aboutsummaryrefslogtreecommitdiff
path: root/modules/authmodule-eIDAS-v2/checks
diff options
context:
space:
mode:
Diffstat (limited to 'modules/authmodule-eIDAS-v2/checks')
-rw-r--r--modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml8
1 files changed, 7 insertions, 1 deletions
diff --git a/modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml b/modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml
index d961b4d6..9b12a750 100644
--- a/modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml
+++ b/modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml
@@ -14,6 +14,12 @@
</Match>
<Match>
<!-- CSFR protection is implemented by pendingRequestId that is an one-time token -->
+ <Class name="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.controller.IdAustriaClientAuthSignalController" />
+ <Method name="performAuthentication" />
+ <Bug pattern="SPRING_CSRF_UNRESTRICTED_REQUEST_MAPPING" />
+ </Match>
+ <Match>
+ <!-- CSFR protection is implemented by pendingRequestId that is an one-time token -->
<Class name="at.asitplus.eidas.specific.modules.auth.eidas.v2.EidasSignalServlet" />
<Method name="restoreEidasAuthProcess" />
<Bug pattern="SPRING_CSRF_UNRESTRICTED_REQUEST_MAPPING" />
@@ -27,7 +33,7 @@
<Match>
<!-- Redirect URL is only loaded from configuration -->
<Class name="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAuthnRequestTask" />
- <Method name="execute" />
+ <Method name="sendRedirect" />
<Bug pattern="UNVALIDATED_REDIRECT" />
</Match>
<Match>