The test JSP web application should rely on the latest development Ja…

…vaScript code By removing the value of the "org.owasp.csrfguard.JavascriptServlet.sourceFile" property, the logic will search and find the "csrfguard.js" under the META-INF directory Closes #133
OWASP · Aug 5, 2020 · 9825240 · 9825240
1 parent 205cbb9
commit 9825240
Show file tree

Hide file tree

Showing 2 changed files with 1 addition and 451 deletions.
diff --git a/csrfguard-test/csrfguard-test-jsp/src/main/webapp/WEB-INF/classes/Owasp.CsrfGuard.properties b/csrfguard-test/csrfguard-test-jsp/src/main/webapp/WEB-INF/classes/Owasp.CsrfGuard.properties
@@ -333,7 +333,7 @@ org.owasp.csrfguard.Config.Print = true
 # Denotes the location of the JavaScript template file that should be consumed and dynamically 
 # augmented by the JavaScriptServlet class. The default value is WEB-INF/Owasp.CsrfGuard.js. 
 # Use of this property and the existence of the specified template file is required.
-org.owasp.csrfguard.JavascriptServlet.sourceFile = /script/csrfguard.js
+org.owasp.csrfguard.JavascriptServlet.sourceFile =
 
 # Boolean value that determines whether or not the dynamic JavaScript code should be strict 
 # with regards to what links it should inject the CSRF prevention token. With a value of true,