Update security-config.properties (#2826)

Use property to enable/disable the Sanitizer filter. Relates to [PR 1062](bonitasoft/bonita-web-sp#1062) for bonita-web-sp Covers [CVE-58](https://bonitasoft.atlassian.net/browse/CVE-58)
bonitasoft · Jan 15, 2024 · 15dc60a · 15dc60a
1 parent 2a3bc1d
commit 15dc60a
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/platform/platform-resources/src/main/resources/platform_portal/security-config.properties b/platform/platform-resources/src/main/resources/platform_portal/security-config.properties
@@ -1,3 +1,5 @@
+#Enable/disable the Sanitizer protection activation. This sanitizer protects against multiple attacks such as XSS, but may restrict the use of some character sequences.
+security.sanitizer.enabled true
 #Enable/disable CSRF security filter
 security.csrf.enabled true
 #Add  or not the secure flag to the CSRF token cookie (HTTPS only)