开发者

CSRF Java libraries

I was wondering what libraries are out there regarding protecting J2EE applications against CSRF attacks.

I have used CSRF Guard by OWASP. I tried searching but couldn't find any other production quality libraries. Are there any others?

On a开发者_如何学Go side note, the application I'm building is using the Grails framework so if there are Grail's CSRF plugins, I would like to know as well.


New into CSRF but I'm using Grails and for any forms I'm using this method to prevent duplicate form posts, but it would prevent CSRF attacks as well?

<g:form method="post" useToken="true">

And then

withForm {
   // good request
}.invalidToken {
   // bad request
}
0

上一篇:

下一篇:

精彩评论

暂无评论...
验证码 换一张
取 消

最新问答

问答排行榜