operator icon indicating copy to clipboard operation
operator copied to clipboard
verified publisher icon minio

Add Anti-CSRF Token

Open Rezkmike opened this issue 3 years ago • 1 comments

Is your feature request related to a problem? Please describe. Minio keep giving me Absence of Anti-CSRF Token issue on vulnerability scan result

Describe the expected solution you'd like It would be the best if you can implement the Anti-CSRF token on all post requests or on critical stuffs like reset password in the application

Rezkmike avatar Oct 27 '22 01:10 Rezkmike

we'll investigate

cesnietor avatar Oct 30 '23 16:10 cesnietor

We can implement something similar as we did for console, passing the env variables from minio https://github.com/minio/minio/pull/18631.

cesnietor avatar Jun 03 '24 16:06 cesnietor

closing this since operator ui has been deprecated, see https://github.com/minio/operator/blob/master/docs/notes/v6.0.0.md#whats-new for more.

cesnietor avatar Jul 22 '24 17:07 cesnietor