Package uk.ac.warwick.sso.client

Class CSRFFilter

  • All Implemented Interfaces:
    javax.servlet.Filter
    public class CSRFFilter
extends java.lang.Object

    • Field Detail

      • CSRF_HTTP_HEADER

        public static final java.lang.String CSRF_HTTP_HEADER
        See Also:
        Constant Field Values

      • CSRF_COOKIE_NAME

        public static final java.lang.String CSRF_COOKIE_NAME
        See Also:
        Constant Field Values

      • CSRF_TOKEN_PROPERTY_NAME

        public static final java.lang.String CSRF_TOKEN_PROPERTY_NAME
        See Also:
        Constant Field Values

      • CSRF_FORCE_INVALIDATE

        public static final java.lang.String CSRF_FORCE_INVALIDATE
        See Also:
        Constant Field Values

      • CSRF_ERROR

        public static java.lang.String CSRF_ERROR

      • CSRF_ERROR_TOKEN_ABSENT

        public static java.lang.String CSRF_ERROR_TOKEN_ABSENT

      • CSRF_ERROR_TOKEN_MISMATCH

        public static java.lang.String CSRF_ERROR_TOKEN_MISMATCH

    • Constructor Detail

      • CSRFFilter

        public CSRFFilter()

    • Method Detail

      • setReportOnlyMode

        public void setReportOnlyMode​(boolean reportOnlyMode)

      • init

        public void init​(javax.servlet.FilterConfig filterConfig)
          throws javax.servlet.ServletException
        Throws:
        javax.servlet.ServletException

      • destroy

        public void destroy()

      • doFilter

        public final void doFilter​(javax.servlet.ServletRequest req,
                           javax.servlet.ServletResponse res,
                           javax.servlet.FilterChain chain)
                    throws java.io.IOException,
                           javax.servlet.ServletException
        Specified by:
        doFilter in interface javax.servlet.Filter
        Throws:
        java.io.IOException
        javax.servlet.ServletException