public.javadoc.org.spincast.plugins.formsprotection.csrf.SpincastFormsCsrfProtectionFilter.html Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of spincast-website Show documentation
Show all versions of spincast-website Show documentation
Source code for the https://www.spincast.org website.
SpincastFormsCsrfProtectionFilter (org.spincast:spincast-framework 1.0.0 API)
org.spincast.plugins.formsprotection.csrf
Interface SpincastFormsCsrfProtectionFilter
-
- All Known Implementing Classes:
- SpincastFormsCsrfProtectionFilterDefault
public interface SpincastFormsCsrfProtectionFilter
The Forms CSRF Protection Filter.
You should add this filter with the
"skipResourcesRequests()" options so it
is ignored except for main routes.
-
-
Method Summary
All Methods Instance Methods Abstract Methods
Modifier and Type
Method and Description
SpincastCsrfTokengetCurrentCsrfToken()
Returns the current CSRF token to use
Will be taken from the user session by default.
voidhandle(RequestContext<?> context)
Filter's handle main method.
-
-
Method Detail
-
handle
void handle(RequestContext<?> context)
throws FormInvalidOriginException,
FormInvalidCsrfTokenException
Filter's handle main method.
- Throws:
FormInvalidOriginException - if the form was submitted
from an invalid orgine.FormInvalidCsrfTokenException - if the form was submitted
with an invalid CRSF token.
-
getCurrentCsrfToken
SpincastCsrfToken getCurrentCsrfToken()
Returns the current CSRF token to use
Will be taken from the user session by default.
If there is none, a new one is created and save
in the user's session! This will make the session
being dirty and saved to the database.
Copyright © 2019. All rights reserved.
Spincast Framework