hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 11:15:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

Update ComparingValueOfSensetiveHeader.java

Browse Source
This commit is contained in:
Ahmed Farid
2022-02-21 12:35:32 +01:00
committed by Chris Smowton
parent f758ed0d85
commit 09e054ace6
1 changed files with 0 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
java/ql/src/experimental/Security/CWE/CWE-208/ComparingValueOfSensetiveHeader.java
View File

@@ -8,7 +8,6 @@ private boolean UnsafecsrfComparison(String csrfTokenInCookie) {
}
}
private boolean safecsrfComparison(String csrfTokenInCookie) {
String csrfTokenInRequest = request.getHeader("X-CSRF-TOKEN");
if (csrfTokenInRequest == null || !MessageDigest.isEqual(