From 81cac1fa71cfebf2b590da23bbb89a1e14c7c553 Mon Sep 17 00:00:00 2001 From: Gonzalo Gasca Meza Date: Thu, 9 Jan 2025 23:18:42 -0800 Subject: [PATCH] Change check_origin with check_referer --- jupyter_server/base/handlers.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/jupyter_server/base/handlers.py b/jupyter_server/base/handlers.py index 3909c7063..dd67e8ef3 100644 --- a/jupyter_server/base/handlers.py +++ b/jupyter_server/base/handlers.py @@ -535,7 +535,7 @@ def check_xsrf_cookie(self) -> None: # Servers without authentication are vulnerable to XSRF return None try: - if not self.check_origin(): + if not self.check_referer(): raise web.HTTPError(404) return super().check_xsrf_cookie() except web.HTTPError as e: