Create ComparingValueOfSensetiveHeader.java

ahmed-farid-dev · smowton · commit a0a1c587e5b2 · 2022-02-25T17:33:07.000Z
diff --git a/java/ql/test/experimental/query-tests/security/CWE-208/ComparingValueOfSensetiveHeader.java b/java/ql/test/experimental/query-tests/security/CWE-208/ComparingValueOfSensetiveHeader.java
@@ -0,0 +1,20 @@
+import javax.servlet.http.HttpServletRequest;
+import java.nio.charset.StandardCharsets;
+import java.security.MessageDigest;
+
+
+private boolean UnsafecsrfComparison(String csrfTokenInCookie) {
+         if(csrfTokenInCookie == null || !csrfTokenInCookie.equals(request.getHeader("X-CSRF-TOKEN"))) { // BAD
+                 return false;
+         }
+}
+
+
+private boolean safecsrfComparison(String csrfTokenInCookie) {
+	  String csrfTokenInRequest = request.getHeader("X-CSRF-TOKEN");
+          if (csrfTokenInRequest == null || !MessageDigest.isEqual(
+                csrfTokenInCookie.getBytes(StandardCharsets.UTF_8), 
+                csrfTokenInRequest.getBytes(StandardCharsets.UTF_8))) { // GOOD
+                     return false;
+         }
+}
