[Bug 53987] New: Log uncovered HTTP methods in combined security constraints

bugzilla Tue, 09 Oct 2012 12:02:53 -0700

https://issues.apache.org/bugzilla/show_bug.cgi?id=53987


          Priority: P2
            Bug ID: 53987
          Assignee: dev@tomcat.apache.org
           Summary: Log uncovered HTTP methods in combined security
                    constraints
          Severity: enhancement
    Classification: Unclassified
                OS: Windows Server 2003
          Reporter: ma...@apache.org
          Hardware: PC
            Status: NEW
           Version: trunk
         Component: Catalina
           Product: Tomcat 8

It is usually an error (and a security hole) if security constraints are
defined for some but not all HTTP methods for a given URL. If such a situation
is detected on web application start, log it.

-- 
You are receiving this mail because:
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[Bug 53987] New: Log uncovered HTTP methods in combined security constraints

Reply via email to