In Docker based deployments it is a lot easier to configure containers via properties (JAVA_OPTS).
Currently the CSRF filter in Share is configured via xml file. It is difficult to set origin and referer without creating a new Docker image. And setting these values is essential for making the Docker environments work behind a proxy.
Recently Surf Webscripts (the home of CSRF filter) project was updated to make the filter configurable via properties, see REPO-3465. These changes were added to content repository.
- Referer and Origin regexps are configurable via properties (JAVA_OPTS) in Share
- A new Docker image is created and added to docker hub