Examples with DefaultCsrfTokenGenerator org.pac4j.core.matching.matcher.csrf.DefaultCsrfTokenGenerator used on opensource projects

Search in sources :

Example 1 with DefaultCsrfTokenGenerator

use of org.pac4j.core.matching.matcher.csrf.DefaultCsrfTokenGenerator in project pac4j by pac4j.

the class DefaultAuthorizationCheckerTests method testCsrfCheckPostTokenParameter.

@Test
public void testCsrfCheckPostTokenParameter() {
    final var context = MockWebContext.create().setRequestMethod(HttpConstants.HTTP_METHOD.POST.name());
    final var generator = new DefaultCsrfTokenGenerator();
    final SessionStore sessionStore = new MockSessionStore();
    final var token = generator.get(context, sessionStore);
    context.addRequestParameter(Pac4jConstants.CSRF_TOKEN, token);
    sessionStore.set(context, Pac4jConstants.CSRF_TOKEN, token);
    sessionStore.set(context, Pac4jConstants.CSRF_TOKEN_EXPIRATION_DATE, new Date().getTime() + 1000 * generator.getTtlInSeconds());
    assertTrue(checker.isAuthorized(context, sessionStore, profiles, DefaultAuthorizers.CSRF_CHECK, new HashMap<>(), new ArrayList<>()));
}
Also used : MockSessionStore(org.pac4j.core.context.session.MockSessionStore) SessionStore(org.pac4j.core.context.session.SessionStore) DefaultCsrfTokenGenerator(org.pac4j.core.matching.matcher.csrf.DefaultCsrfTokenGenerator) MockSessionStore(org.pac4j.core.context.session.MockSessionStore) Test(org.junit.Test)

Example 2 with DefaultCsrfTokenGenerator

use of org.pac4j.core.matching.matcher.csrf.DefaultCsrfTokenGenerator in project pac4j by pac4j.

the class DefaultAuthorizationCheckerTests method testCsrfCheckPost.

@Test
public void testCsrfCheckPost() {
    final var context = MockWebContext.create().setRequestMethod(HttpConstants.HTTP_METHOD.POST.name());
    final var generator = new DefaultCsrfTokenGenerator();
    final SessionStore sessionStore = new MockSessionStore();
    generator.get(context, sessionStore);
    assertFalse(checker.isAuthorized(context, sessionStore, profiles, DefaultAuthorizers.CSRF_CHECK, new HashMap<>(), new ArrayList<>()));
}
Also used : MockSessionStore(org.pac4j.core.context.session.MockSessionStore) SessionStore(org.pac4j.core.context.session.SessionStore) DefaultCsrfTokenGenerator(org.pac4j.core.matching.matcher.csrf.DefaultCsrfTokenGenerator) MockSessionStore(org.pac4j.core.context.session.MockSessionStore) Test(org.junit.Test)

Example 3 with DefaultCsrfTokenGenerator

use of org.pac4j.core.matching.matcher.csrf.DefaultCsrfTokenGenerator in project pac4j by pac4j.

the class CsrfAuthorizerTests method setUp.

@Before
public void setUp() {
    authorizer = new CsrfAuthorizer();
    authorizer.setCheckAllRequests(true);
    expirationDate = new Date().getTime() + 1000 * new DefaultCsrfTokenGenerator().getTtlInSeconds();
}
Also used : DefaultCsrfTokenGenerator(org.pac4j.core.matching.matcher.csrf.DefaultCsrfTokenGenerator) Date(java.util.Date) Before(org.junit.Before)

Aggregations

DefaultCsrfTokenGenerator (org.pac4j.core.matching.matcher.csrf.DefaultCsrfTokenGenerator)3 Test (org.junit.Test)2 MockSessionStore (org.pac4j.core.context.session.MockSessionStore)2 SessionStore (org.pac4j.core.context.session.SessionStore)2 Date (java.util.Date)1 Before (org.junit.Before)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial