Examples of CsrfToken

Examples of org.springframework.security.web.csrf.CsrfToken

47
48
49
50
51
52
53
54
55
56
57
    }

    @Test
    public void hasCsrfRendersReturnedValue() throws JspException, UnsupportedEncodingException {

        CsrfToken token = new DefaultCsrfToken("X-Csrf-Token", "_csrf", "abc123def456ghi789");
        this.request.setAttribute(CsrfToken.class.getName(), token);

        this.tag.handleReturn = "fooBarBazQux";

        int returned = this.tag.doEndTag();
View Full Code Here

Examples of org.springframework.security.web.csrf.CsrfToken

62
63
64
65
66
67
68
69
70
71
72
    }

    @Test
    public void hasCsrfRendersDifferentValue() throws JspException, UnsupportedEncodingException {

        CsrfToken token = new DefaultCsrfToken("X-Csrf-Token", "_csrf", "abc123def456ghi789");
        this.request.setAttribute(CsrfToken.class.getName(), token);

        this.tag.handleReturn = "<input type=\"hidden\" />";

        int returned = this.tag.doEndTag();
View Full Code Here

Examples of org.springframework.security.web.csrf.CsrfToken

19
20
21
22
23
24
25
26
27
28
29
        this.tag = new CsrfInputTag();
    }

    @Test
    public void handleTokenReturnsHiddenInput() {
        CsrfToken token = new DefaultCsrfToken("X-Csrf-Token", "_csrf", "abc123def456ghi789");

        String value = this.tag.handleToken(token);

        assertNotNull("The returned value should not be null.", value);
        assertEquals("The output is not correct.",
View Full Code Here

Examples of org.springframework.security.web.csrf.CsrfToken

31
32
33
34
35
36
37
38
39
40
41
                value);
    }

    @Test
    public void handleTokenReturnsHiddenInputDifferentTokenValue() {
        CsrfToken token = new DefaultCsrfToken("X-Csrf-Token", "csrfParameter", "fooBarBazQux");

        String value = this.tag.handleToken(token);

        assertNotNull("The returned value should not be null.", value);
        assertEquals("The output is not correct.",
View Full Code Here

Examples of org.springframework.security.web.csrf.CsrfToken

98
99
100
101
102
103
104
105
106
107
108
   * @return the token
   * @see org.springframework.security.web.csrf.CsrfTokenRepository#loadToken(javax.servlet.http.HttpServletRequest)
   */
  public CsrfToken loadToken(HttpServletRequest request) {
    String cookie = Utils.getStateParam(Config.AUTH_COOKIE, request);
    CsrfToken token = null;
    if (cookie != null) {
      String ident;
      String[] ctokens = Utils.base64dec(cookie).split(":");
      if (StringUtils.startsWithAny(ctokens[0], "http", "https") && ctokens[1].startsWith("//")) {
        ident = ctokens[0].concat(":").concat(ctokens[1]);
View Full Code Here

Examples of org.springframework.security.web.csrf.CsrfToken

78
79
80
81
82
83
84
85
86
87
         * org.springframework.test.web.servlet.request.RequestPostProcessor
         * #postProcessRequest(org.springframework.mock.web.MockHttpServletRequest)
         */
        @Override
        public MockHttpServletRequest postProcessRequest(MockHttpServletRequest request) {
            CsrfToken token = repository.generateToken(request);
            repository.saveToken(token, request, new MockHttpServletResponse());
            request.setParameter(token.getParameterName(), token.getToken());
            return request;
        }
View Full Code Here

Examples of org.springframework.security.web.csrf.CsrfToken

18
19
20
21
22
23
24
25
26
27
28
29
30
31
    @Test
    public void testShouldReturnCorrectLogicalViewName() {
        // given
        HttpServletRequest request = mock(HttpServletRequest.class);
        CsrfToken csrfToken = mock(CsrfToken.class);
        when(request.getAttribute(CsrfToken.class.getName())).thenReturn(csrfToken);
        when(csrfToken.getParameterName()).thenReturn("parameterName");
        when(csrfToken.getToken()).thenReturn("token");
        Model model = new ExtendedModelMap();

        // when
        String page = new LoginPageController().getPage(request, model);
View Full Code Here

Examples of org.springframework.security.web.csrf.CsrfToken

78
79
80
81
82
83
84
85
86
87
88
89
        }
        model.addAttribute("passwordPattern", User.PASSWORD_PATTERN);
        model.addAttribute("environment", environment);
        model.addAttribute("email", email);
        model.addAttribute("oneTimeToken", oneTimeToken);
        CsrfToken csrfToken = (CsrfToken) request.getAttribute(CsrfToken.class.getName());
        if (csrfToken != null) {
            model.addAttribute("csrfParameterName", csrfToken.getParameterName());
            model.addAttribute("csrfToken", csrfToken.getToken());
        }
        return "updatePassword";
    }
View Full Code Here

Examples of org.springframework.security.web.csrf.CsrfToken

46
47
48
49
50
51
52
53
54
55
56
57
    @RequestMapping(value = "/register", method = RequestMethod.GET)
    public String registerForm(HttpServletRequest request, Model model) {
        setupModel(model);
        model.addAttribute("user", new User());
        CsrfToken csrfToken = (CsrfToken) request.getAttribute(CsrfToken.class.getName());
        if (csrfToken != null) {
            model.addAttribute("csrfParameterName", csrfToken.getParameterName());
            model.addAttribute("csrfToken", csrfToken.getToken());
        }
        return "register";
    }
View Full Code Here

Examples of org.springframework.security.web.csrf.CsrfToken

14
15
16
17
18
19
20
21
22
23
24
25
@Controller
public class LoginPageController {

    @RequestMapping(value = "/login", method = RequestMethod.GET)
    public String getPage(HttpServletRequest request, Model model) {
        CsrfToken csrfToken = (CsrfToken) request.getAttribute(CsrfToken.class.getName());
        if (csrfToken != null) {
            model.addAttribute("csrfParameterName", csrfToken.getParameterName());
            model.addAttribute("csrfToken", csrfToken.getToken());
        }
        return "login";
    }
View Full Code Here
TOP
Copyright © 2018 www.massapi.com. All rights reserved.
All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.