[CONJ-1235] enable redirection option by default only when SSL is enable - Jira

XML

Word

Printable

Details

Type: Task
Status: Closed (View Workflow)
Priority: Minor
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.5.3
Component/s: configuration
Labels:
None

Description

The `permitRedirect` option is actually enabled by default.

Default must be changed to: redirects must be only allowed when the connection is secure (using full SSL, fingerprint validation, localhost, etc.).

You can explicitly set this option to true to always allow redirects or false to always block them.

Attachments

Activity

People

Assignee:: Diego Dupin

Reporter:: Diego Dupin

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 2025-02-17 13:56

Updated:: 2025-03-21 17:13

Resolved:: 2025-03-21 17:13

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.