// PEM files for root certificates of Comodo and Entrust. These two CAs are sufficient to view
  // https://publicobject.com (Comodo) and https://squareup.com (Entrust). But they aren't
  // sufficient to connect to most HTTPS sites including https://godaddy.com and https://visa.com.
  // Typically developers will need to get a PEM file from their organization's TLS administrator.
  val comodoRsaCertificationAuthority =
    """
    -----BEGIN CERTIFICATE-----

## Риск CSRF { #csrf-risk }

Такое поведение по умолчанию обеспечивает защиту от класса атак **Cross-Site Request Forgery (CSRF)** в очень специфическом сценарии.

Эти атаки используют то, что браузеры позволяют скриптам отправлять запросы без выполнения CORS preflight, когда они:

		Code:           "XMinioSiteReplicationConfigMissingError",
		Description:    "Site not found in site replication configuration",
		HTTPStatusCode: http.StatusBadRequest,
	},
	ErrSiteReplicationIAMConfigMismatch: {
		Code:           "XMinioSiteReplicationIAMConfigMismatch",
		Description:    "IAM configuration mismatch between sites",
		HTTPStatusCode: http.StatusBadRequest,
	},
	ErrAdminRebalanceAlreadyStarted: {

              <templates>
                <template>model-v3.vm</template>
              </templates>
            </configuration>
          </execution>
          <execution>
            <id>modello-site-docs</id>
            <phase>none</phase>
          </execution>
        </executions>
      </plugin>
      <plugin>
        <groupId>com.github.siom79.japicmp</groupId>

        assertTrue(thumbPath.toString().contains("thumbnails"));
    }

    @Test
    public void test_getSitePath() {
        Path sitePath = ResourceUtil.getSitePath("site.xml");
        assertNotNull(sitePath);
        assertTrue(sitePath.toString().contains("site"));
    }

    @Test
    public void test_getPluginPath() {
        Path pluginPath = ResourceUtil.getPluginPath("plugin.jar");
        assertNotNull(pluginPath);

## Riesgo de CSRF { #csrf-risk }

Este comportamiento por defecto provee protección contra una clase de ataques de **Cross-Site Request Forgery (CSRF)** en un escenario muy específico.

Estos ataques aprovechan que los navegadores permiten que los scripts envíen requests sin hacer un preflight de CORS cuando:

      HandshakeCertificates certificates = new HandshakeCertificates.Builder()
              .addTrustedCertificate((X509Certificate) isgCertificate)
              // Uncomment to allow connection to any site generally, but will cause
              // noticeable memory pressure in Android apps.
//              .addPlatformTrustedCertificates()
              .build();

      - name: Build with downloaded Maven
        shell: bash
        run: mvn verify -Papache-release -Dgpg.skip=true -e -B -V

      - name: Build site with downloaded Maven
        shell: bash
        run: mvn site -e -B -V -Preporting

      - name: Upload Mimir caches
        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
        if: ${{ !cancelled() && !failure() }}

///

## `Request` documentation { #request-documentation }

You can read more details about the [`Request` object in the official Starlette documentation site](https://www.starlette.dev/requests/).

/// note | Technical Details

You could also use `from starlette.requests import Request`.

///

## Documentation de `Request` { #request-documentation }

Vous pouvez lire plus de détails sur [l'objet `Request` sur le site de documentation officiel de Starlette](https://www.starlette.dev/requests/).

/// note | Détails techniques

Vous pouvez également utiliser `from starlette.requests import Request`.