Comment 14 for bug 1463698
Revision history for this message
| Tristan Cacqueray (tristan-cacqueray) wrote | #14 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
On a typical openstack deployment, swift is accessible on the same domain as Horizon, but on a different port (8080).
While this let the csrftoken to leak, it can't be reused on horizon because django's Same Origin Policy will prevent request coming from port 8080.