[KULRICE-14287] XML ingester page does not work because of CSRF prevention Created: 09/Nov/16  Updated: 09/Nov/16

Status: Open
Project: Kuali Rice Development
Component/s: Development
Affects Version/s: 2.3.10
Fix Version/s: None
Security Level: Public (Public: Anyone can view)

Type: Bug Fix Priority: Major
Reporter: Ken Geis Assignee: Unassigned
Resolution: Unresolved Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Similar issues:
KULRICE-1130improve performance of xml ingestion
KULRICE-2450XML Ingester does not display helpful error messages
KULRICE-4331exporting Groups with XML option does not create a format that is recognized by the XML ingester
KULRICE-5972Rice Dev: Going to XML Ingester screen gives error
KULRICE-5188Need to remove ImmutableListAdapter and ImmutableCollectionAdapter from our service definitions and come up with a better solution because it is producing undesirable XML
KULRICE-2634Implement support for better XML export, XML import and migration features
KULRICE-10037CSV,XML,XLS file download buttons on collections does not work on inquiry screen
KULRICE-7579Remoting of WorkflowRuleAttribute does not appear to be working well because WorkflowRuleAttributeHandlerService does not appear to be hooked up properly
KULRICE-2632Fix error output display on XML Ingester and add additional field fields
KAI Review Status: Not Required
KTI Review Status: Not Required
Code Review Status: Not Required
Include in Release Notes?:
Yes

 Description   

rice-middleware/web/src/main/webapp/core/WEB-INF/jsp/impex/ingester.jsp specifies

<%@ page session="false" %>

This prevents the CSRF tag from accessing the session-scoped CSRF token. Submitting the ingester form fails.


Generated at Fri Nov 22 14:32:01 CST 2019 using JIRA 6.1.5#6160-sha1:a61a0fc278117a0da0ec9b89167b8f29b6afdab2.