Security on GWT-Platform Applications

https://stackoverflow.com/questions/8431524

security
gwt
cookies
gwt-platform

11-03-2021
|

Question

I've trying to protect my action against XSRF attacks, following the tutorial in this link, but, I can't undestand how, where and what I set in MYCOOKIE, following the example.

I already make my actions secured (using boilerplate generation), and configure my DispatchServletModule to use sec_cookie as the security cookie, but, as I say, I dont know how to set the cookie.

Can someone explain this or show a example?

Thanks in advance.

EDIT1: Where I have to put the @SecurityCookie annotation?

Solution

EDIT1: Where I have to put the @SecurityCookie annotation? In your gin client module and guice module.

Also you can read: https://groups.google.com/forum/?hl=en#!searchin/gwt-platform/XSRF

Licensed under: CC-BY-SA with attribution

Not affiliated with StackOverflow