Loading...

XML

Word

Printable

Type: Suggestion
Resolution: Fixed
Fix Version/s: 5.2
Component/s: Core - Content REST APIs
Labels:

Feedback Policy:

We collect Confluence feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

NOTE: This suggestion is for Confluence Server. Using Confluence Cloud? See the corresponding suggestion.

We need to prevent the REST plugin from exposing JSONP APIs automatically from our resources.

relates to

BSERV-3103 Allow JSONP to be disabled as it is a CSRF vulnerability

Closed

CONFCLOUD-28050 Disable JSONP REST APIs in Confluence

Closed

Is related to: HOP-2763 Loading...

links to

Assignee:: Richard Atkins

Reporter:: Matt Ryall

Votes:: 0 Vote for this issue

Watchers:: 8 Start watching this issue

Created:: 08/Feb/2013 4:40 AM

Updated:: 19/Sep/2019 5:20 AM

Resolved:: 24/Apr/2014 4:16 AM