You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In the JWT's jku lesson, the lesson html page configure submission linkage as /WebGoat/JWT/final/delete?token=... . However, it should correspond to the controller whose path is /WebGoat/JWT/jku/delete?token=... , that sits in org.owasp.webgoat.lessons.jwt.claimmisuse.JWTHeaderJKUEndpoint.
I am not familiar with the the html framework this project use, but after checking it, it seems that this problem is still existing in current branch.
BTW, I also notice that the docker image can't show the quiz and can't upload file to webwolf, but I have no idea why they take place. I am using the newest docker image of webgoat on Ubuntu 22.04.
Appreciate for this project and maintainers, it indeed helps me gain more knowledge about web security.
The text was updated successfully, but these errors were encountered:
I was able to get around this config issue by using BurpSuite entirely to send the request to the correct endpoint and managed to successfully complete the assignment. However, the lesson still isn't marked as completed even though i get this response "Congratulations. You have successfully completed the assignment". Is there something missing?
In the JWT's jku lesson, the lesson html page configure submission linkage as /WebGoat/JWT/final/delete?token=... . However, it should correspond to the controller whose path is /WebGoat/JWT/jku/delete?token=... , that sits in org.owasp.webgoat.lessons.jwt.claimmisuse.JWTHeaderJKUEndpoint.
I am not familiar with the the html framework this project use, but after checking it, it seems that this problem is still existing in current branch.
BTW, I also notice that the docker image can't show the quiz and can't upload file to webwolf, but I have no idea why they take place. I am using the newest docker image of webgoat on Ubuntu 22.04.
Appreciate for this project and maintainers, it indeed helps me gain more knowledge about web security.
The text was updated successfully, but these errors were encountered: