[Koha] need help in fixing issues
koha at ourlib.in
koha at ourlib.in
Fri Jan 10 23:21:28 NZDT 2025
Dear Team,
During a recent software scan, it was observed that the CSRF token is
missing from both the headers and cookies of koha application.
Could you confirm if it is feasible to configure koha application to
include the CSRF token in both the headers and cookies? If yes, could
you provide guidance or recommended practices for implementing this
configuration?
Secondly Is it possible to restrict the input of special characters in
the Patron module, specifically for fields like the Patron Name?
Regards,
Vikram Zadgaonkar
More information about the Koha
mailing list