Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / gorilla/csrf issues and pull requests
#178 - [FEATURE] Custom TrustedOrigin matcher
Issue -
State: open - Opened by cody-dot-js 3 months ago
#177 - Clarification Needed on TrustedOrigins Variable Usage
Issue -
State: open - Opened by kokoichi206 4 months ago
- 1 comment
Labels: bug
#176 - Token from context
Pull Request -
State: open - Opened by FlorianLoch 9 months ago
- 6 comments
Labels: size/S
#175 - [Question] How to log
Issue -
State: closed - Opened by arlando 10 months ago
- 1 comment
Labels: bug
#174 - First request to protected endpoint fails, CSRF header is empty
Issue -
State: open - Opened by nate-anderson 10 months ago
Labels: bug
#173 - [BUG] Middleware doesn't work with Chi
Issue -
State: open - Opened by romanian-bag-void 12 months ago
- 1 comment
Labels: bug
#172 - Forbidden - CSRF token invalid
Issue -
State: open - Opened by kek-wait-w about 1 year ago
Labels: bug
#171 - Update LICENSE
Pull Request -
State: closed - Opened by coreydaley about 1 year ago
- 1 comment
Labels: size/M
#170 - Updating gorilla/securecookie to v1.1.2
Pull Request -
State: closed - Opened by coreydaley about 1 year ago
- 1 comment
Labels: size/S
#169 - updating github action workflows
Pull Request -
State: closed - Opened by coreydaley about 1 year ago
- 1 comment
Labels: size/M
#168 - Update issues.yml
Pull Request -
State: closed - Opened by coreydaley over 1 year ago
- 1 comment
Labels: size/XS
#167 - updated licence
Pull Request -
State: closed - Opened by apoorvajagtap over 1 year ago
- 1 comment
Labels: size/M
#166 - [GPT-96] Update go version & add verification/testing tools
Pull Request -
State: closed - Opened by apoorvajagtap over 1 year ago
- 2 comments
Labels: size/L
#165 - Delete .circleci directory
Pull Request -
State: closed - Opened by coreydaley over 1 year ago
#164 - Update README.md
Pull Request -
State: closed - Opened by coreydaley over 1 year ago
#163 - [bug] Generate CSRF tokens for skipped requests
Issue -
State: open - Opened by Airblader about 2 years ago
Labels: bug
#162 - issues/158/examples for working api with javascript frontend
Pull Request -
State: closed - Opened by francoposa over 2 years ago
- 4 comments
Labels: size/L
#161 - Remove pkg/errors dependency
Pull Request -
State: closed - Opened by husio almost 3 years ago
- 3 comments
#160 - CSRF middlware is not usable with go gin
Issue -
State: closed - Opened by rew1nter almost 3 years ago
- 1 comment
Labels: bug
#159 - Package is not `go get`able [bug]
Issue -
State: closed - Opened by rew1nter almost 3 years ago
- 2 comments
Labels: bug, stale
#158 - Cannot get basic version of in-browser Javascript application documentation working
Issue -
State: closed - Opened by francoposa about 3 years ago
- 8 comments
Labels: question, stale
#157 - doc.go: fix docs to present a working code snippet
Pull Request -
State: closed - Opened by Oppodelldog about 3 years ago
- 2 comments
Labels: stale
#156 - [docs]
Issue -
State: closed - Opened by u0nel about 3 years ago
- 1 comment
Labels: stale
#155 - user disabled/blocked cookies on their browser.
Issue -
State: closed - Opened by SirMetathyst over 3 years ago
Labels: question
#154 - Add a note about secrecy of CSRF token in the README.md
Pull Request -
State: closed - Opened by maxximino over 3 years ago
#153 - [bug] README.md does not mention the need to keep the CSRF key secret
Issue -
State: closed - Opened by maxximino over 3 years ago
- 1 comment
Labels: bug
#152 - Multiple _gorilla_csrf cookies create an issue
Issue -
State: closed - Opened by positiveojm over 3 years ago
- 2 comments
Labels: question
#151 - [question] How do I set csrf token from React
Issue -
State: closed - Opened by daisuke0925m over 3 years ago
- 1 comment
Labels: question, stale
#150 - [bug] Not providing token results in wrong error
Issue -
State: closed - Opened by FlorianLoch almost 4 years ago
- 1 comment
Labels: bug, stale
#149 - Not providing any token in requests results in wrong error message
Pull Request -
State: closed - Opened by FlorianLoch almost 4 years ago
- 2 comments
#148 - Fix: code quality issues
Pull Request -
State: closed - Opened by withshubh almost 4 years ago
- 2 comments
#147 - Add note about csrf.Path option
Pull Request -
State: closed - Opened by karelbilek almost 4 years ago
- 1 comment
#146 - csrf.go: ErrBadReferer due to empty r.URL.Host
Issue -
State: closed - Opened by slysandwich almost 4 years ago
- 1 comment
Labels: stale
#145 - [bug] Change default request header onto custom
Issue -
State: closed - Opened by kubitre about 4 years ago
- 3 comments
Labels: bug, stale
#144 - Default path can cause unexpected CSRF token rejections
Issue -
State: closed - Opened by jackc about 4 years ago
- 4 comments
Labels: enhancement
#143 - Does gorilla-csrf really provide more security?
Issue -
State: closed - Opened by robojones about 4 years ago
- 7 comments
Labels: question, stale
#142 - build: use build matrix; drop Go <= 1.10
Pull Request -
State: closed - Opened by elithrar about 4 years ago
Labels: build system
#141 - [question] How to use gorilla/csrf for CSRF protection when authenticating with OpenID Connect?
Issue -
State: closed - Opened by stapelberg about 4 years ago
- 4 comments
Labels: question
#140 - docs: change TrustedOrigin to TrustedOrigins in README
Pull Request -
State: closed - Opened by mittonface about 4 years ago
- 1 comment
#139 - [question] X-Csrf-Token is empty in Response headers (Secure is off)
Issue -
State: closed - Opened by austincollinpena over 4 years ago
- 10 comments
Labels: question, stale
#138 - [question] Why should we pass the CSRF.Token in Header for a web Application and not in Cookie
Issue -
State: closed - Opened by Justin2997 over 4 years ago
- 4 comments
Labels: question
#137 - docs: add TOC to README
Pull Request -
State: closed - Opened by elithrar over 4 years ago
Labels: documentation
#136 - Set SameSite=Lax by default
Pull Request -
State: closed - Opened by elithrar over 4 years ago
Labels: bug
#135 - [bug] Forbidden - CSRF token invalid
Issue -
State: closed - Opened by xzol over 4 years ago
- 6 comments
Labels: question, stale
#134 - CSRF protection working for one url and not for another
Issue -
State: closed - Opened by devasiajoseph over 4 years ago
- 8 comments
Labels: question
#133 - [bug] CSRF verification fail if requests takes too long
Issue -
State: closed - Opened by sunshine69 almost 5 years ago
- 9 comments
Labels: question
#132 - Don't set a default samesite for backwards compatibility
Pull Request -
State: closed - Opened by euank almost 5 years ago
- 1 comment
Labels: bug
#131 - [bug] SameSiteNoneMode will not work for go versions 1.11 - 1.12
Issue -
State: closed - Opened by andwun almost 5 years ago
- 6 comments
Labels: bug, stale
#130 - [feature] SameSite flag support
Issue -
State: closed - Opened by maldevel almost 5 years ago
- 2 comments
Labels: enhancement
#129 - [question] Get 403 invalid csrf token occasionally
Issue -
State: closed - Opened by danqing almost 5 years ago
- 4 comments
Labels: question
#128 - Using same csrf token for form and api calls from js side
Issue -
State: closed - Opened by crawter almost 5 years ago
- 9 comments
Labels: question
#127 - [question] csrf.Path("/") doesn't allow any path as expected
Issue -
State: closed - Opened by DDynamic almost 5 years ago
- 2 comments
Labels: question, stale
#126 - [question] XHR + CSRF questions
Issue -
State: closed - Opened by bigradish almost 5 years ago
- 15 comments
Labels: question
#125 - Minor version Bump?
Issue -
State: closed - Opened by leononame about 5 years ago
- 2 comments
Labels: build system
#124 - Override _gorilla_csrf cookiename
Issue -
State: closed - Opened by proyb6 about 5 years ago
#123 - SameSite option
Pull Request -
State: closed - Opened by tflyons about 5 years ago
- 3 comments
#122 - [question] Downsides of `csrf.Path("/")`?
Issue -
State: closed - Opened by adiabatic about 5 years ago
- 2 comments
Labels: question
#121 - [feature] SameSite missing from Options?
Issue -
State: closed - Opened by bencanford about 5 years ago
- 1 comment
Labels: enhancement
#120 - bugfix: correctly set a defaultMaxAge when MaxAge isn't called
Pull Request -
State: closed - Opened by elithrar about 5 years ago
Labels: bug
#119 - [bug] Default MaxAge never applies
Issue -
State: closed - Opened by betawaffle over 5 years ago
- 4 comments
Labels: bug
#118 - Create release-drafter.yml
Pull Request -
State: closed - Opened by elithrar over 5 years ago
Labels: documentation, build system
#117 - Add trusted origins feature
Pull Request -
State: closed - Opened by fjorgemota over 5 years ago
- 6 comments
Labels: enhancement, feature request
#116 - Trusted Origins
Issue -
State: closed - Opened by fjorgemota over 5 years ago
- 3 comments
Labels: enhancement
#115 - Modified @andrewpillar exclusion pull request
Pull Request -
State: closed - Opened by llakes over 5 years ago
- 2 comments
Labels: enhancement, needs review, stale, feature request
#114 - Remove gorilla/context as part of pre-1.7 support
Pull Request -
State: closed - Opened by elithrar over 5 years ago
#113 - Add CircleCI status badge to README
Pull Request -
State: closed - Opened by elithrar over 5 years ago
#112 - [build] Add CircleCI config
Pull Request -
State: closed - Opened by elithrar over 5 years ago
- 3 comments
#111 - Support exclusion of paths from CSRF check
Pull Request -
State: closed - Opened by andrewpillar over 5 years ago
- 8 comments
Labels: enhancement, needs review, stale
#110 - [build] Add a check sum on the modules
Pull Request -
State: closed - Opened by ritoon over 5 years ago
- 1 comment
#109 - Getting 'Forbidden - CSRF token invalid' on post request using axios from client.
Issue -
State: closed - Opened by jljucutan over 5 years ago
- 8 comments
Labels: stale
#108 - Getting 'Forbidden - CSRF token invalid' while sending Ajax POST request using javascript XMLHttpRequest()
Issue -
State: closed - Opened by Kenmobility almost 6 years ago
- 19 comments
Labels: question, stale
#107 - add SameSite support to Cookie options
Pull Request -
State: closed - Opened by tzafrirben almost 6 years ago
- 3 comments
Labels: stale
#106 - Enhancement: make safe methods configurable
Issue -
State: closed - Opened by fredbi almost 6 years ago
- 3 comments
Labels: stale
#105 - [question] General CSRF Protection and Library Questions
Issue -
State: closed - Opened by donaldthai almost 6 years ago
- 5 comments
Labels: stale
#104 - Clearing `_gorilla_csrf` cookie not regenerating
Issue -
State: closed - Opened by donaldthai almost 6 years ago
- 14 comments
Labels: question, stale
#103 - [docs] Improve JS header/form instructions
Pull Request -
State: closed - Opened by elithrar almost 6 years ago
Labels: documentation
#102 - Update and rename stale to stale.yml
Pull Request -
State: closed - Opened by elithrar almost 6 years ago
#101 - Add stalebot config
Pull Request -
State: closed - Opened by elithrar almost 6 years ago
Labels: needs review
#100 - Non-cookie session store
Issue -
State: closed - Opened by muirdm almost 6 years ago
- 7 comments
Labels: question
#99 - CSRF tokens set without using the SameSite flag
Issue -
State: closed - Opened by tzafrirben about 6 years ago
- 2 comments
Labels: help wanted, stale
#98 - Add a "Reviewed by Hound" badge
Pull Request -
State: closed - Opened by salbertson about 6 years ago
- 1 comment
#97 - Background GET before POST request?
Issue -
State: closed - Opened by britishben about 6 years ago
- 4 comments
Labels: stale
#96 - Fails when GET and POST not in same path
Issue -
State: closed - Opened by sj14 over 6 years ago
- 4 comments
#95 - How to do csrf protection for http.Get requests?
Issue -
State: closed - Opened by qibobo over 6 years ago
- 4 comments
#94 - [fix] Use custom string type instead of built-in string to prevent collisions with …
Pull Request -
State: closed - Opened by CJ-Jackson over 6 years ago
- 2 comments
#93 - Forbidden - CSRF token invalid
Issue -
State: closed - Opened by nanohayder over 6 years ago
- 6 comments
#92 - Interaction with Websockets
Issue -
State: closed - Opened by iaburton over 6 years ago
- 2 comments
#91 - [docs] Note that developers should check the HTTP method
Pull Request -
State: closed - Opened by elithrar over 6 years ago
Labels: documentation
#90 - Examples should limit requests to POST
Issue -
State: closed - Opened by dogben over 6 years ago
- 1 comment
Labels: documentation
#89 - Multiple Servers Behind Load Balancer
Issue -
State: closed - Opened by maxdobeck over 6 years ago
- 2 comments
#88 - Update LICENSE & AUTHORS files
Pull Request -
State: closed - Opened by elithrar over 6 years ago
#87 - Update LICENSE file to reflect Google employee contributions.
Pull Request -
State: closed - Opened by elithrar over 6 years ago
- 1 comment
#86 - Forbidden - CSRF token invalid
Issue -
State: closed - Opened by maxdobeck over 6 years ago
- 3 comments
#85 - [question] Apply CSRF only to a subrouter
Issue -
State: closed - Opened by karelbilek over 6 years ago
- 4 comments
#84 - [build] Run CI for Go 1.7.x - 1.10.x
Pull Request -
State: closed - Opened by elithrar over 6 years ago
#83 - [build] Define go.mod
Pull Request -
State: closed - Opened by elithrar over 6 years ago
#82 - Set csrf.Path differently based on request
Issue -
State: closed - Opened by tuhlmann over 6 years ago
- 2 comments
Labels: question
#81 - Can't get testing environment to work
Issue -
State: closed - Opened by jrmiller82 over 6 years ago
- 2 comments
#80 - complete example
Issue -
State: closed - Opened by proclaim almost 7 years ago
- 12 comments
Labels: question
#79 - [question]: Ability to ignore certain POST requests ?
Issue -
State: closed - Opened by agnivade almost 7 years ago
- 13 comments