• Home
• io.leopard
• nobug-csrf
• 0.9.6
• source code
• CsrfDaoImpl.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

io.leopard.web4j.nobug.csrf.CsrfDaoImpl Maven / Gradle / Ivy

package io.leopard.web4j.nobug.csrf;

import javax.servlet.http.HttpServletRequest;

import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;

public class CsrfDaoImpl implements CsrfDao {

	protected Log logger = LogFactory.getLog(this.getClass());

	@Override
	public String getAccount(HttpServletRequest request) {
		// Long yyuid = SessionUtil.getUid(request.getSession());
		// if (yyuid == null) {
		// String str = CookieUtil.getCookie("uid", request);
		// yyuid = NumberUtils.toLong(str);
		// }
		// String user = yyuid.toString();

		return null;
	}

	@Override
	public String encrypt(String str) {
		// EncryptUtil.sha1(str);
		return null;
	}

	// @Override
	// public void checkToken(String yyuid, String token) {
	// String[] list = token.split("-");
	// if (list.length != 3) {
	// throw new CsrfTokenInvalidException("非法token[" + token + "].");
	// }
	//
	// String prefix = list[1];
	// long time = Long.parseLong(list[2]);
	// String sha1 = EncryptUtil.sha1(time + " " + yyuid + " " + CsrfServiceImpl.publicKey); // 使用SHA1加密算法
	// if (!sha1.startsWith(prefix)) {
	// // + prefix + "," + sha1 + ","
	// logger.error("prefix:" + prefix + " yyuid:" + yyuid + " time:" + time + " sha1:" + sha1 + " token:" + token);
	// throw new CsrfTokenInvalidException("token[" + token + "]不正确.");
	// }
	// }

}