[Owasp-csrfguard] Fwd: <csrf:a> tag issue
amolsw at gmail.com
Wed Jul 11 20:04:54 UTC 2012
I am using *<csrf:a>* tag for creating a hyperlink and for its *href *attribute
I am using jsp expression as below
<csrf:a href="myservlet?name=*<%=somename%>*" ></csrf:a>
in above statement, "somename" is a jsp variable and provided by using jsp
Now when the form get submitted to the server, the *somename *parameter
value does not get transfer properly. Instead of sending the runtime value
for the variable "somename" it send the value as *<%=somename%>.
*This is NOT a problem when using regular <a> tag and only when I am using
<csrf:a> tag I am getting this problem
Is it known problem with this tag ?
Please suggest the solution
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-csrfguard