CsrfAuthorizer (pac4j 2.0.0 API)

Skip navigation links

Prev Class
Next Class

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

java.lang.Object
- org.pac4j.core.authorization.authorizer.csrf.CsrfAuthorizer

All Implemented Interfaces:

Authorizer<CommonProfile>
```
public class CsrfAuthorizer
extends Object
implements Authorizer<CommonProfile>
```
Authorizer that checks CSRF tokens.

Since:

1.8.0

Author:

Jerome Leleu

Constructor Summary

Constructors
Constructor and Description
`CsrfAuthorizer()`
`CsrfAuthorizer(String parameterName, String headerName)`
`CsrfAuthorizer(String parameterName, String headerName, boolean onlyCheckPostRequest)`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`String`	`getHeaderName()`
`String`	`getParameterName()`
`boolean`	`isAuthorized(WebContext context, List<CommonProfile> profiles)` Checks if the user profiles and / or the current web context are authorized.
`boolean`	`isOnlyCheckPostRequest()`
`void`	`setHeaderName(String headerName)`
`void`	`setOnlyCheckPostRequest(boolean onlyCheckPostRequest)`
`void`	`setParameterName(String parameterName)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

CsrfAuthorizer
```
public CsrfAuthorizer()
```

CsrfAuthorizer

public CsrfAuthorizer(String parameterName,
                      String headerName)

CsrfAuthorizer

public CsrfAuthorizer(String parameterName,
                      String headerName,
                      boolean onlyCheckPostRequest)

Method Detail
- isAuthorized
```
public boolean isAuthorized(WebContext context,
                            List<CommonProfile> profiles)
                     throws HttpAction
```
  Description copied from interface: Authorizer
  
  Checks if the user profiles and / or the current web context are authorized.
  
  Specified by:
  
  isAuthorized in interface Authorizer<CommonProfile>
  
  Parameters:
  
  context - the web context
  
  profiles - the user profiles
  
  Returns:
  
  if the access is authorized
  
  Throws:
  
  HttpAction - whether an additional HTTP action is required
- getParameterName
```
public String getParameterName()
```
- setParameterName
```
public void setParameterName(String parameterName)
```
- getHeaderName
```
public String getHeaderName()
```
- setHeaderName
```
public void setHeaderName(String headerName)
```
- isOnlyCheckPostRequest
```
public boolean isOnlyCheckPostRequest()
```
- setOnlyCheckPostRequest
```
public void setOnlyCheckPostRequest(boolean onlyCheckPostRequest)
```

Skip navigation links

Prev Class
Next Class

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

Copyright © 2017. All rights reserved.