Protecting against Cross-Site Request Forging (CSRF)

1 - Configure CSRF Protection

@EnableWebSecurity
public class WebSecurityConfig extends WebSecurityConfigurerAdapter {

	@Override
	protected void configure(HttpSecurity http) throws Exception {
		http
			.csrf().disable();
	}
}

2 - Include the CSRF Token

see: https://docs.spring.io/spring-security/site/docs/5.0.x/reference/html/csrf.html#csrf-include-csrf-token

3 - Other

Java - Spring - Security (HttpSecurity - CookieCsrfTokenRepository)

／var／log marcus chiu

Explorer

Java - Spring - Security (HttpSecurity - Cross Site Request Forgery CSRF)

1 - Configure CSRF Protection

2 - Include the CSRF Token

3 - Other

／var／logmarcus chiu

Explorer

Java - Spring - Security (HttpSecurity - Cross Site Request Forgery CSRF)

1 - Configure CSRF Protection

2 - Include the CSRF Token

3 - Other

／var／log marcus chiu