[Owasp-csrfguard] Fwd: <csrf:a> tag issue

Amol Walunjkar amolsw at gmail.com
Wed Jul 11 20:04:54 UTC 2012


I am using *<csrf:a>* tag for creating a hyperlink and for its *href *attribute
I am using jsp expression as below

<csrf:a href="myservlet?name=*<%=somename%>*" ></csrf:a>

in above statement, "somename" is a jsp variable and provided by using jsp
Now when the form get submitted to the server, the *somename *parameter
value does not get transfer properly. Instead of sending the runtime value
for the variable "somename" it send the value as *<%=somename%>.
*This is NOT a problem when using regular <a> tag and only when I am using
<csrf:a> tag I am getting this problem

Is it known problem with this tag ?
Please suggest the solution


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-csrfguard/attachments/20120711/2d35fdaf/attachment.html>

More information about the Owasp-csrfguard mailing list