rest - CSRF : How to set cookie named XSRF-TOKEN in JAX-RS from backend to use with AngularJS in frontend -


my application uses angularjs in front end , java restful web services @ end. trying use xsrf-token prevent cross site request forgery.

on front end, have angular-cookies.js added, , included ngcookies dependency in 'module'. 

angular.module('myapp.list', ['ngcookies'])  .controller('listctrl', ['$scope', '$http', '$location', function coilistctrl($scope, $http, $location) {    //some functions   }) .run(['$http', '$cookies', function($http, $cookies) { //check if header x-xsrf-token set angularjs console.log($http.defaults.headers.post['x-xsrf-token']);     debugger; }]);

on front end unable see cookie have created on end in both below ways:

1

using httpservletresponse object, way i'm unsure how sent ui not using httpresponse.sendredirect(url);

@context httpservletresponse httpresponse; httpresponse.addcookie(new cookie("xsrf-token", string.valueof(math.random()));

2

adding cookies responsebuilder return response using responsebuilder.build() method in typical jax-rs service

responsebuilder responsebuilder = response.temporaryredirect(new uri(redirecturl)); newcookie abc = new newcookie("xsrf-token", string.valueof(math.random())); responsebuilder.cookie(abc); return responsebuilder.build();

could please me create valid cookies , use them.


Comments

Post a Comment

Popular posts from this blog

php - failed to open stream: HTTP request failed! HTTP/1.0 400 Bad Request -

this code i'm using find latitude , longitude of place: function coords($address){ echo $url="http://maps.googleapis.com/maps/api/geocode/json?address=".$address; $json = file_get_contents(urlencode($url)); $data = json_decode($json, true); print_r($data['results'][0]['geometry']['location']['lat']); print_r($data['results'][0]['geometry']['location']['lng']); } however returns warning: failed open stream: http request failed! http/1.0 400 bad request if use above code in simple procedure works fine not in function. note: have tried curl_init()... method produced same result? instead of encoding whole url encode address part. following code work fine $add='jamshoro phase 2'; $url="http://maps.googleapis.com/maps/api/geocode/json?address=".urlencode($add); $json = file_get_contents($url); $data = json_decode($json, true); print_r($data['r
Read more

java - How to filter a backspace keyboard input -

i have code gives message when key number pressed: txtvalueofclause.addeventfilter(keyevent.key_typed, new eventhandler<keyevent>() { @override public void handle(keyevent t) { char ar[] = t.getcharacter().tochararray(); char ch = ar[t.getcharacter().tochararray().length - 1]; if (!(ch >= '0' && ch <= '9')) { system.out.println("the char entered not number"); t.consume(); } } }); now if press on wrong button , press backspace remove it, error message. how can add backspace input if statement? i have found answer: txtvalueofclause.addeventfilter(keyevent.key_typed, new eventhandler<keyevent>() { @override public void handle(keyevent t) { char ar[] = t.getcharacter().tochararray(); char ch = ar[t.getcharacter().tochar
Read more

java - Show Soft Keyboard when EditText Appears -

i have code in android app, alert dialog , keyboard, , when dialog shown want keyboard appear. not , not sure why? here code: final alertdialog.builder alert = new alertdialog.builder(this); alert.settitle("title"); alert.setmessage("message"); final edittext input = new edittext(this); input.setinputtype(inputtype.type_class_number); alert.setview(input); input.setonfocuschangelistener(new view.onfocuschangelistener() { @override public void onfocuschange(view v, boolean hasfocus) { if (hasfocus) { log.i(tag, "in focus"); inputmethodmanager inputmethodmanager = (inputmethodmanager) getsystemservice(context.input_method_service); inputmethodmanager.showsoftinput(input, inputmethodmanager.show_implicit); } } }); but keyboard not appear though edit text in focus, , tell appear why, doesn't come up? thanks in advance.
Read more