Examples with DefaultCsrfToken org.springframework.security.web.csrf.DefaultCsrfToken used on opensource projects

Example 1 with DefaultCsrfToken

use of org.springframework.security.web.csrf.DefaultCsrfToken in project spring-security by spring-projects.

the class AbstractSecurityWebSocketMessageBrokerConfigurerDocTests method setup.

@BeforeEach
public void setup() {
    this.token = new DefaultCsrfToken("header", "param", "token");
    this.sessionAttr = "sessionAttr";
    this.messageUser = new TestingAuthenticationToken("user", "pass", "ROLE_USER");
}

Example 2 with DefaultCsrfToken

use of org.springframework.security.web.csrf.DefaultCsrfToken in project spring-security by spring-projects.

the class AbstractSecurityWebSocketMessageBrokerConfigurerTests method setup.

@BeforeEach
public void setup() {
    this.token = new DefaultCsrfToken("header", "param", "token");
    this.sessionAttr = "sessionAttr";
    this.messageUser = new TestingAuthenticationToken("user", "pass", "ROLE_USER");
}

Example 3 with DefaultCsrfToken

use of org.springframework.security.web.csrf.DefaultCsrfToken in project spring-security by spring-projects.

the class DefaultCsrfTokenMixinTests method defaultCsrfTokenDeserializeTest.

@Test
public void defaultCsrfTokenDeserializeTest() throws IOException {
    DefaultCsrfToken token = this.mapper.readValue(CSRF_JSON, DefaultCsrfToken.class);
    assertThat(token).isNotNull();
    assertThat(token.getHeaderName()).isEqualTo("csrf-header");
    assertThat(token.getParameterName()).isEqualTo("_csrf");
    assertThat(token.getToken()).isEqualTo("1");
}

Example 4 with DefaultCsrfToken

use of org.springframework.security.web.csrf.DefaultCsrfToken in project spring-security by spring-projects.

the class CsrfInputTagTests method handleTokenReturnsHiddenInput.

@Test
public void handleTokenReturnsHiddenInput() {
    CsrfToken token = new DefaultCsrfToken("X-Csrf-Token", "_csrf", "abc123def456ghi789");
    String value = this.tag.handleToken(token);
    assertThat(value).as("The returned value should not be null.").isNotNull();
    assertThat(value).withFailMessage("The output is not correct.").isEqualTo("<input type=\"hidden\" name=\"_csrf\" value=\"abc123def456ghi789\" />");
}

Example 5 with DefaultCsrfToken

use of org.springframework.security.web.csrf.DefaultCsrfToken in project spring-security by spring-projects.

the class CsrfMetaTagsTagTests method handleTokenRendersTags.

@Test
public void handleTokenRendersTags() {
    CsrfToken token = new DefaultCsrfToken("X-Csrf-Token", "_csrf", "abc123def456ghi789");
    String value = this.tag.handleToken(token);
    assertThat(value).as("The returned value should not be null.").isNotNull();
    assertThat(value).withFailMessage("The output is not correct.").isEqualTo("<meta name=\"_csrf_parameter\" content=\"_csrf\" />" + "<meta name=\"_csrf_header\" content=\"X-Csrf-Token\" />" + "<meta name=\"_csrf\" content=\"abc123def456ghi789\" />");
}