Package com.atlassian.confluence.impl.xsrf

Interface XsrfTokenValidationManager

All Known Implementing Classes:
DefaultXsrfTokenValidationManager
public interface XsrfTokenValidationManager
Defines global XSRF token validation rules.
See Also:

  • Method Summary

    Modifier and Type
    Method
    Description
    boolean
    isRequestExempt(MappedAction mappedAction, javax.servlet.http.HttpServletRequest request)
    Check if XSRF token protection checks should be exempt for the given action and request.
    boolean
    isRequestValid(MappedAction mappedAction, javax.servlet.http.HttpServletRequest request)
    Check if this request passes XSRF token checks.

  • Method Details

    • isRequestExempt

      boolean isRequestExempt(MappedAction mappedAction, javax.servlet.http.HttpServletRequest request)
      Check if XSRF token protection checks should be exempt for the given action and request.
      Parameters:
      mappedAction - the mapped Struts action if one exists, else null
      request - the current HttpServletRequest
      Returns:
      true if the request should be exempt from xsrf check, false otherwise.

    • isRequestValid

      boolean isRequestValid(MappedAction mappedAction, javax.servlet.http.HttpServletRequest request)
      Check if this request passes XSRF token checks.
      Parameters:
      mappedAction - the mapped Struts action if one exists, else null
      request - the current HttpServletRequest
      Returns:
      true if the request passes XSRF token validations, false otherwise.