firewall merge requestshttps://lab.civicrm.org/extensions/firewall/-/merge_requests2023-03-24T15:31:37Zhttps://lab.civicrm.org/extensions/firewall/-/merge_requests/16Fix fraudevent listener2023-03-24T15:31:37ZJKingsnorthFix fraudevent listenerhttps://lab.civicrm.org/extensions/firewall/-/merge_requests/8one time token for slow down attack2022-08-16T17:43:34Zsunilone time token for slow down attackhttps://lab.civicrm.org/extensions/firewall/-/merge_requests/3Use a table to store generated CSRF tokens2020-08-14T11:06:30Zmattwiremjw@mjwconsult.co.ukUse a table to store generated CSRF tokens* Use a table to store generated CSRF tokens (`civicrm_firewall_csrf_token`).
*Previously this was stored in the user session but this causes problems if you request more than one token in the same session (eg. by opening multiple pay...* Use a table to store generated CSRF tokens (`civicrm_firewall_csrf_token`).
*Previously this was stored in the user session but this causes problems if you request more than one token in the same session (eg. by opening multiple payment pages in different browser tabs).*
* Fix issue with cleanup job always deleting all records.
* Add configurable CSRF token timeout via hidden setting (`firewall_csrf_timeout`) - default 24 hours.