Kuali Rice Development
  1. Kuali Rice Development
  2. KULRICE-14287

XML ingester page does not work because of CSRF prevention


    • Type: Bug Fix Bug Fix
    • Status: Open Open
    • Priority: Major Major
    • Resolution: Unresolved
    • Affects Version/s: 2.3.10
    • Fix Version/s: None
    • Component/s: Development
    • Security Level: Public (Public: Anyone can view)
    • Labels:
    • Similar issues:
      KULRICE-1130improve performance of xml ingestion
      KULRICE-2450XML Ingester does not display helpful error messages
      KULRICE-4331exporting Groups with XML option does not create a format that is recognized by the XML ingester
      KULRICE-5972Rice Dev: Going to XML Ingester screen gives error
      KULRICE-5188Need to remove ImmutableListAdapter and ImmutableCollectionAdapter from our service definitions and come up with a better solution because it is producing undesirable XML
      KULRICE-2634Implement support for better XML export, XML import and migration features
      KULRICE-2632Fix error output display on XML Ingester and add additional field fields
      KULRICE-10037CSV,XML,XLS file download buttons on collections does not work on inquiry screen
      KULRICE-1642Merge EDL bootstrap XML into the main KEW bootstrap XML
    • KAI Review Status:
      Not Required
    • KTI Review Status:
      Not Required
    • Code Review Status:
      Not Required
    • Include in Release Notes?:


      rice-middleware/web/src/main/webapp/core/WEB-INF/jsp/impex/ingester.jsp specifies

      <%@ page session="false" %>

      This prevents the CSRF tag from accessing the session-scoped CSRF token. Submitting the ingester form fails.


        There are no comments yet on this issue.


          • Assignee:
            Ken Geis
          • Votes:
            0 Vote for this issue
            1 Start watching this issue


            • Created:

              Structure Helper Panel