hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-20 02:44:30 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update ComparingValueOfSensetiveHeader.java

Browse Source
This commit is contained in:
Ahmed Farid
2022-02-21 12:36:27 +01:00
committed by Chris Smowton
parent 09e054ace6
commit f96e47db09
1 changed files with 0 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
java/ql/src/experimental/Security/CWE/CWE-208/ComparingValueOfSensetiveHeader.java
View File

@@ -7,7 +7,6 @@ private boolean UnsafecsrfComparison(String csrfTokenInCookie) {
return false;
}
}
private boolean safecsrfComparison(String csrfTokenInCookie) {
String csrfTokenInRequest = request.getHeader("X-CSRF-TOKEN");
if (csrfTokenInRequest == null || !MessageDigest.isEqual(