Package com.vaadin.hilla.auth

Class CsrfIndexHtmlRequestListener

java.lang.Object

com.vaadin.hilla.auth.CsrfIndexHtmlRequestListener

All Implemented Interfaces:

IndexHtmlRequestListener, Serializable, EventListener

public class CsrfIndexHtmlRequestListener
extends Object
implements IndexHtmlRequestListener

An index HTML request listener that generates and sends a token for Cross-Site Request Forgery protection (Double Submit Cookie pattern) of endpoints. Sets a JS readable cookie in the response with the CSRF token, if such a cookie was not present in request.

See Also:

• CsrfChecker
• Serialized Form

Constructor Summary

Constructors

Constructor	Description
CsrfIndexHtmlRequestListener()

Method Summary

Modifier and Type	Method	Description
void	modifyIndexHtmlResponse(IndexHtmlResponse indexHtmlResponse)	The method allows to modify the Index HTML response before it is sent to browser.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

CsrfIndexHtmlRequestListener

public CsrfIndexHtmlRequestListener()

Method Details

modifyIndexHtmlResponse

public void modifyIndexHtmlResponse(IndexHtmlResponse indexHtmlResponse)

Description copied from interface: IndexHtmlRequestListener

The method allows to modify the Index HTML response before it is sent to browser.

Specified by:

modifyIndexHtmlResponse in interface IndexHtmlRequestListener

Parameters:

indexHtmlResponse - the response object which includes the VaadinRequest, VaadinResponse, and Document