We couldn't load all Actvitity tabs. Refresh the page to try again.
If the problem persists, contact your Jira admin.

      • given:
        • I log in to Optimize
      • when:
        • In another tab I click on a link that contains a forged request to Optimize, which would perform an action that I don't want to perform, e.g. deleting a report.
      • then:
        • the forged request is not being executed
      • such that:
        • Optimize only performs actions that I authorized it to do and attackers acan't force me to execute unwanted actions

      AT:

      • Optimize is protected against CSRF attacks
      • There is a security notice informing users that the Optimize 2.5 contains a protection mechanism agains CSRF attacks

        This is the controller panel for Smart Panels app

            Loading...

                • given:
                  • I log in to Optimize
                • when:
                  • In another tab I click on a link that contains a forged request to Optimize, which would perform an action that I don't want to perform, e.g. deleting a report.
                • then:
                  • the forged request is not being executed
                • such that:
                  • Optimize only performs actions that I authorized it to do and attackers acan't force me to execute unwanted actions

                AT:

                • Optimize is protected against CSRF attacks
                • There is a security notice informing users that the Optimize 2.5 contains a protection mechanism agains CSRF attacks

                  This is the controller panel for Smart Panels app

                        Unassigned Unassigned
                        felix.mueller Felix Mueller
                        Votes:
                        0 Vote for this issue
                        Watchers:
                        2 Start watching this issue

                          Created:
                          Updated:
                          Resolved:

                              Unassigned Unassigned
                              felix.mueller Felix Mueller
                              Votes:
                              0 Vote for this issue
                              Watchers:
                              2 Start watching this issue

                                Created:
                                Updated:
                                Resolved: