Commit 79a41286 authored by vehjelmtvedt's avatar vehjelmtvedt
Browse files

small bug in token validation

parent 19610f73
No preview for this file type
......@@ -153,7 +153,14 @@ public class Handler extends AbstractHandler
// This is a request to post something in the channel.
// Confirm that CSRF token matches session cookie
if (session.identity.equals(UUID.fromString(request.getParameter("CSRFToken")))) { return; }
String token = request.getParameter("CSRFToken");
System.err.println("TOKEN: " + token);
System.err.println("SESSION ID: " + session.identity);
if (!session.identity.equals(UUID.fromString(request.getParameter("CSRFToken")))) {
System.err.println("CSRF ERROR!!!!!!!");
return;
}
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment