tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Akash Jain <akash.delh...@gmail.com>
Subject CSRF protection in Tomcat 7
Date Mon, 24 Mar 2014 19:49:00 GMT
How can I prevent CSRF protection using Tomcat 7 ?

I have heard that tomcat 7 provides CSRF filter
http://tomcat.apache.org/tomcat-7.0-doc/api/org/apache/catalina/filters/CsrfPreventionFilter.html

But is it thread safe ?

Or shall we do a custom protection in our spring 3 application ?

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message