CSRF

Product version:
7.2, 7.1, 7.0
Product edition:
  • Community
  • Teamwork
  • Efficiency
  • Performance

This page explains how to secure your application against Cross-Site Request Forgery (CSRF) attacks.

Default security setup in Bonita BPM

In Bonita BPM, the security feature is optional and disabled by default. This leaves Bonita BPM unprotected from malicious attacks. By default (with the security feature disabled), the behavior of the application remains the same but no check is done regarding Tokens in HTTP Requests.

The content of this page is for authenticated users only.

Last update on Jan, 21 2016