Is RH-SSO vulnerable to CSRF Attacks ?

Solution Verified - Updated -

Issue

  • Is RH-SSO vulnerable to CSRF Attacks ?
  • Does the RH-SSO Login form page contain a nonce or any CSRF protection ?

Environment

  • Red Hat Single Sign-On (RH-SSO)
    • 7
  • Cross Site Request Forgery (CSRF)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In