Hercules Retail 360 Admin App - Sticky sessions and CSRF

Register
Submit a solution
The challenge is finished.

Challenge Overview

Describe what you want to accomplish. 

We currently have an iOS and web application built for the Retail 360 app.  The Retail 360 app allows customer service representatives for Hercules to manage customer accounts and view customer information.  A previous challenge has implemented a majority of the requirements, and this challenge will implement a few fixes that have been logged recently.


Existing code:

The existing code is available in Gitlab here:  https://gitlab.com/hercules-retail/admin-portal

You will be expected to submit a Git patch file that can be applied to the commit hash 
94e4c6da208bee7a77451b498ec216c702073109.

Bugs to fix:

These Gitlab issues are in scope for this challenge:

https://gitlab.com/hercules-retail/admin-portal/issues/76
https://gitlab.com/hercules-retail/admin-portal/issues/85

Submission

Your submission must include a Git patch file against the commit hash above.  The Git patch file should include any relevant changes to the README for this challenge, including a separate file for validation information.

Your solution must be easily deployable to Heroku.  The current app is and you must not do anything to break Heroku deployments.


Final Submission Guidelines

Please see above

ELIGIBLE EVENTS:

2017 TopCoder(R) Open

Review style

Final Review

Community Review Board

Approval

User Sign-Off

ID: 30057692