Skip to main content
Kinetic Community

Security Features

IDF guide rendered from cache

Several security improvements were added in v5.2

 

Topics
  • Cross-Site Request Forgery (CSRF) is an exploit where malicious code uses the trust (authentication) of one site to operate on another.
  • The "Web Frame Policy" configuration item was added to improve control of how Kinetic Request and Survey templates can be displayed within other web sites. The Web Frame Policy configuration item defines the rules to allow displaying Kinetic Request and Survey pages from within frames on other sites.
  • A Redirection Whitelist limits the locations a user can be redirected to outside the Kinetic Request application.  This applies to the location the user is optionally redirected to after a logout action.