Difference between revisions of "ESAPI Session Management"

Revision as of 14:33, 11 December 2008

TODO

Add a secure form tag that does CSRF as well as other form protections like autocomplete

Separate session management API and CSRF from the Authentication and HTTP utilities

Revision as of 14:30, 11 December 2008 (view source) Jeff Williams (talk \| contribs) ← Older edit		Revision as of 14:33, 11 December 2008 (view source) Jeff Williams (talk \| contribs) Newer edit →
Line 7:		Line 7:
	* Add a secure form tag that does CSRF as well as other form protections like autocomplete		* Add a secure form tag that does CSRF as well as other form protections like autocomplete

−	* ~~...~~	+	* Separate session management API and CSRF from the Authentication and HTTP utilities