From: Philipp Dallig Date: Wed, 4 Jan 2017 15:06:56 +0000 (+0100) Subject: sirona-aem - remove duplicate CSRF Token X-Git-Tag: v0.1.0~3680 X-Git-Url: https://git.uhu-banane.de/?a=commitdiff_plain;h=827011be6d4a53c85d114c4f6f6c0007a384735d;p=pixelpark%2Fhiera.git sirona-aem - remove duplicate CSRF Token --- diff --git a/customer/sirona-aem/production.yaml b/customer/sirona-aem/production.yaml index 73e59db0..d1588e64 100644 --- a/customer/sirona-aem/production.yaml +++ b/customer/sirona-aem/production.yaml @@ -1006,7 +1006,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -1020,7 +1019,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -1087,7 +1086,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -1101,7 +1099,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -1167,7 +1165,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -1181,7 +1178,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -1247,7 +1244,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -1261,7 +1257,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -1328,7 +1324,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -1342,7 +1337,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -1409,7 +1404,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -1423,7 +1417,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -1489,7 +1483,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -1503,7 +1496,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -1570,7 +1563,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -1584,7 +1576,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -1650,7 +1642,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -1664,7 +1655,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -1730,7 +1721,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -1744,7 +1734,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -1811,7 +1801,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -1825,7 +1814,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -1892,7 +1881,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -1906,7 +1894,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -1973,7 +1961,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -1987,7 +1974,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -2054,7 +2041,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -2068,7 +2054,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -2134,7 +2120,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -2148,7 +2133,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' } @@ -2218,7 +2203,6 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/api.json' } # Unique fuer Assets Domain - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms - - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Security Rules - { type: 'deny', url: '/etc/' } - { type: 'deny', url: '/libs/' } @@ -2232,7 +2216,7 @@ aem::dispatcher::publish_farm: - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) # CSRF - - { type: 'allow', url: '/libs/granite/csrf/token.json' } + - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token # Deny content grabbing - { type: 'deny', url: '*.infinity.json' } - { type: 'deny', url: '*.tidy.json' }