DefaultSecurityConfiguration test for checksum is not testing ESAPI

tsubasa853 / owasp-esapi-php

Automatically exported from code.google.com/p/owasp-esapi-php

Other

0 stars 0 forks source link

DefaultSecurityConfiguration test for checksum is not testing ESAPI #5

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago

The testConfigChecksum test for the DefaultSecurityConfiguration is not
testing ESAPI per se. It's an example of a best practice, but doesn't e.g.
extract a MD5 value from within ESAPI.xml, and compare that against a
recomputed value. Please remove this test from SecurityConfigurationTest.

Original issue reported on code.google.com by mike.bob...@gmail.com on 9 Oct 2009 at 7:32

GoogleCodeExporter commented 9 years ago

Original comment by mike.bob...@gmail.com on 9 Oct 2009 at 7:42

GoogleCodeExporter commented 9 years ago

Mike,

Fixed - see r130

thanks,
Andrew

Original comment by vande...@gmail.com on 20 Oct 2009 at 11:46

Changed state: Fixed