19 lines
407 B
Plaintext
19 lines
407 B
Plaintext
|
include::../description.adoc[]
|
||
|
|
|
||
|
|
== Noncompliant Code Example
|
||
|
|
|
||
|
|
----
|
||
|
|
public class MyServlet extends HttpServlet {
|
||
|
|
protected void doPost(HttpServletRequest request, HttpServletResponse response)
|
||
|
|
throws ServletException, IOException {
|
||
|
|
String referer = request.getHeader("referer"); // Noncompliant
|
||
|
|
if(isTrustedReferer(referer)){
|
||
|
|
//..
|
||
|
|
}
|
||
|
|
//...
|
||
|
|
}
|
||
|
|
}
|
||
|
|
----
|
||
|
|
|
||
|
|
include::../see.adoc[]
|