Activity
From 2017-03-31 to 2017-04-29
2017-04-26
-
03:54 Bug #158 (Closed): Can't pay by Bitcoin - CSRF error
- Thanks. I have also moved the blockchain data onto SSD-backed storage which will hopefully help prevent the daemon ge...
-
03:47 Bug #158: Can't pay by Bitcoin - CSRF error
- Works, receives payment, marks invoice as paid. Looks closable.
2017-04-24
-
- Sorry, that is just the result of a timeout while the bitcoind was busy catching up with the blockchain. I need to ma...
-
- We're sorry, there was a problem with our bitcoin server. We've now been made aware of the problem and are looking in...
-
- I believe this is now fixed. Please could you give it another try? Thanks!
2017-04-23
-
- Sorry about that. Will be a bug introduced when adding anti-Cross Site Request Forgery checks for issue #156. Looking...
-
- The error is "Anti-CSRF token missing!"; I tried both Safari 10.1 (11603.1.30.0.34) and Firefox 52.0.2 on OS X 10.11.6.
2017-04-11
-
- The default session timeout of 30 minutes may not be appropriate for security-sensitive pages. Consider reducing it (...
-
- All remaining forms have now been secured against CSRF.
2017-04-09
-
- Done:
> * /account/invoices/pay/
2017-04-08
-
- Done:
> * /account/
-
- These two done (on test site):
> * /xfer/
> * /account/config/
2017-04-06
-
- As the remaining forms are only for trivial uses, or redirect to third party suppliers (e.g. for payment), there's pr...
2017-04-04
-
- A number of forms on the Panel are susceptible to Cross-Site Request Forgery. Any form which does a POST will need pr...
Also available in: Atom