I have implemented OWASP CsrfGuard 3 filter on an existing Struts 1.1 application, its working fine for every request, except the forms which have a file upload field and enctype="multipart/form-data". The following message is logged on the console "error:required token is missing from the request".
The csrf token was added as a hidden field on th开发者_运维百科e form, and is present when I view the page source in the browser.
The form works fine if I remove the file field from the form and enctype attribute from html:Form tag.
Please let me know how to configure mulipart file upload with CsrfGuard.
Thanks,
Sorry that's a known issue (See the CSRF mailing list, April 2011).
![Interactive visualization of a graph in python [closed]](https://www.devze.com/res/2023/04-10/09/92d32fe8c0d22fb96bd6f6e8b7d1f457.gif)
加载中,请稍侯......
精彩评论