Update ComparingValueOfSensetiveHeader.java

ahmed-farid-dev · smowton · commit f96e47db0993 · 2022-02-25T17:33:07.000Z
diff --git a/java/ql/src/experimental/Security/CWE/CWE-208/ComparingValueOfSensetiveHeader.java b/java/ql/src/experimental/Security/CWE/CWE-208/ComparingValueOfSensetiveHeader.java
@@ -7,7 +7,6 @@ private boolean UnsafecsrfComparison(String csrfTokenInCookie) {
                  return false;
          }
 }
-
 private boolean safecsrfComparison(String csrfTokenInCookie) {
 	  String csrfTokenInRequest = request.getHeader("X-CSRF-TOKEN");
           if (csrfTokenInRequest == null || !MessageDigest.isEqual(

Original file line number	Diff line number	Diff line change
`@@ -7,7 +7,6 @@ private boolean UnsafecsrfComparison(String csrfTokenInCookie) {`
`7`	`7`	`return false;`
`8`	`8`	`}`
`9`	`9`	`}`
`10`		`-`
`11`	`10`	`private boolean safecsrfComparison(String csrfTokenInCookie) {`
`12`	`11`	`String csrfTokenInRequest = request.getHeader("X-CSRF-TOKEN");`
`13`	`12`	`if (csrfTokenInRequest == null \|\| !MessageDigest.isEqual(`