Package uk.ac.warwick.sso.client

Class CSRFInterceptor

  • All Implemented Interfaces:
    org.springframework.web.servlet.HandlerInterceptor
    public class CSRFInterceptor
extends java.lang.Object
implements org.springframework.web.servlet.HandlerInterceptor

    • Constructor Summary

      Constructors 
      Constructor Description
      CSRFInterceptor()  

    • Method Summary

      All Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      void afterCompletion​(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, java.lang.Object handler, java.lang.Exception ex)  
      void postHandle​(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, java.lang.Object handler, org.springframework.web.servlet.ModelAndView modelAndView)  
      boolean preHandle​(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, java.lang.Object handler)  
      void setReportOnlyMode​(boolean reportOnlyMode)  

      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

    • Field Detail

      • CSRF_HTTP_HEADER

        public static final java.lang.String CSRF_HTTP_HEADER
        See Also:
        Constant Field Values

      • CSRF_COOKIE_NAME

        public static final java.lang.String CSRF_COOKIE_NAME
        See Also:
        Constant Field Values

      • CSRF_TOKEN_PROPERTY_NAME

        public static final java.lang.String CSRF_TOKEN_PROPERTY_NAME
        See Also:
        Constant Field Values

      • CSRF_FORCE_INVALIDATE

        public static final java.lang.String CSRF_FORCE_INVALIDATE
        See Also:
        Constant Field Values

      • CSRF_ERROR

        public static java.lang.String CSRF_ERROR

      • CSRF_ERROR_TOKEN_ABSENT

        public static java.lang.String CSRF_ERROR_TOKEN_ABSENT

      • CSRF_ERROR_TOKEN_MISMATCH

        public static java.lang.String CSRF_ERROR_TOKEN_MISMATCH

    • Constructor Detail

      • CSRFInterceptor

        public CSRFInterceptor()

    • Method Detail

      • setReportOnlyMode

        public void setReportOnlyMode​(boolean reportOnlyMode)

      • preHandle

        public boolean preHandle​(javax.servlet.http.HttpServletRequest request,
                         javax.servlet.http.HttpServletResponse response,
                         java.lang.Object handler)
                  throws java.lang.Exception
        Specified by:
        preHandle in interface org.springframework.web.servlet.HandlerInterceptor
        Throws:
        java.lang.Exception

      • postHandle

        public void postHandle​(javax.servlet.http.HttpServletRequest request,
                       javax.servlet.http.HttpServletResponse response,
                       java.lang.Object handler,
                       org.springframework.web.servlet.ModelAndView modelAndView)
                throws java.lang.Exception
        Specified by:
        postHandle in interface org.springframework.web.servlet.HandlerInterceptor
        Throws:
        java.lang.Exception

      • afterCompletion

        public void afterCompletion​(javax.servlet.http.HttpServletRequest request,
                            javax.servlet.http.HttpServletResponse response,
                            java.lang.Object handler,
                            java.lang.Exception ex)
                     throws java.lang.Exception
        Specified by:
        afterCompletion in interface org.springframework.web.servlet.HandlerInterceptor
        Throws:
        java.lang.Exception