TechQA.

Atmosphere framework - Is there any security concerns because of query string in request URI

48 views Asked by At

I am using Atmosphere framework for web socket communication in my application. The generated web socket URLs contains X-Atmosphere-tracking-id, X-Atmosphere-Framework, X-Atmosphere-Transport, X-atmo-protocol etc. parameters as query string like mentioned below

wss://localhost:8080/chat?X-Atmosphere-tracking-id=0&X-Atmosphere-Framework=3.0.0-javascript&X-Atmosphere-Transport=websocket&X-Heartbeat-Server=65&Content-Type=application/json&X-atmo-protocol=true&uuId=cc610c86-37a2-75b4-fbfc-36a9cb8220cb&spring-security-redirect=%2Fchat%2Findex&Accept-Language=en

Is there any security issues can exists because of exposing X-Atmosphere-tracking-id, X-Atmosphere-Framework, X-Atmosphere-Transport, X-atmo-protocol etc. parameters as query string in URLs?

By using the browser devtools, we are able to see the complete URL with query string so

security query-string atmosphere querystringparameter atmosphere.js
Original Q&A
0

There are 0 answers

Related Questions in SECURITY

Related Questions in QUERY-STRING

Related Questions in ATMOSPHERE

Related Questions in QUERYSTRINGPARAMETER

Related Questions in ATMOSPHERE.JS

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions