Implement a Cross Site Scripting Filter

Question

VTALUKDAR

Member since 2010

41 posts

ING Bank N.V.

Posted: Jul 4, 2019

Last activity: Jul 29, 2019

Posted: 4 Jul 2019 8:45 EDT
Last activity: 29 Jul 2019 1:36 EDT

Closed

Solved

Implement a Cross Site Scripting Filter

Report

Hi,

I am currently using PEGA 7.3 environment. One of the APIs I am currently integrating to, is returning an error like this :

WARN n.i.r.p.r.f.DoubleSubmitCSRFFilter CSRF security arbiter: not proceeding, returning HttpStatus 'Forbidden'

The API team in question is asking me to implement a cross site scripting filter so that this barrier can be overtaken. Can you give me any suggestions on what are the possible approaches to do this ?

I am using a JSON-based API with POST method for integration purposes.

***Edited by Moderator: Lochan to update platform capability tags***

To see attachments, please log in.

Data Integration

Security

Like (0)
Share this page Facebook Twitter LinkedIn Email Copying... Copied!

Accepted Solution

Posted: 5 years ago

Posted: 28 Jul 2019 9:04 EDT

dasn1

PEGA

replied to VTALUKDAR

Report

Hi,

Below link might help you,

https://community.pega.com/knowledgebase/articles/configuring-csrf-protection

Thank You,

To see attachments, please log in.

Like (0)

Question

Implement a Cross Site Scripting Filter

Need help or want to help others?

Experience the benefits of Support Center when you log in.

Question

Implement a Cross Site Scripting Filter

Related content:

Need help or want to help others?

Experience the benefits of Support Center when you log in.

We'd prefer it if you saw us at our best.