JSF 2.0 using Post-Redirect-Post facing Security Threat (Vulnerability - Post Accpted as GET)
posted 3 years ago
I'm new to JSF 2.0 and am using faces-redirect=true for Page redirecting same to return from a Pop up screen. but in security findings i caught.. in which the post method using faces redirect it show all param's while passing / return from Pop up and same thing happen in page navigation as well
userProfile.XHTML?faces-redirect = true
Please suugest, how to resolve this Security findings ?
WHAT is your favorite color? Blue, no yellow, ahhhhhhh! Tiny ad:
the new thread boost feature brings a LOT of attention to your favorite threads