RotatingKeyCSRFTokenSigner
Attributes
- Graph
-
- Supertypes
-
trait CSRFTokenSignerclass Objecttrait Matchableclass Any
Members list
Value members
Concrete methods
It's important that this method doesn't just delegate to an underlying DefaultCSRFTokenSigner
, because this method uses the extractSignedToken()
method, and we need to use the tolerant version of that method that's only available in this class.
It's important that this method doesn't just delegate to an underlying DefaultCSRFTokenSigner
, because this method uses the extractSignedToken()
method, and we need to use the tolerant version of that method that's only available in this class.
Attributes
- Definition Classes
-
CSRFTokenSigner
Constant time equals method.
Constant time equals method.
Given a length that both Strings are equal to, this method will always run in constant time. This prevents timing attacks.
Attributes
- Definition Classes
-
CSRFTokenSigner
This method verifies tokens which may have been signed with a previous secret that we still consider valid for now. It tries all applicable secrets to see if any of them can verify the token.
This method verifies tokens which may have been signed with a previous secret that we still consider valid for now. It tries all applicable secrets to see if any of them can verify the token.
Attributes
- Definition Classes
-
CSRFTokenSigner
Generates a signed token.
Generates a signed token.
Attributes
- Definition Classes
-
CSRFTokenSigner
Generates a cryptographically secure token.
Generates a cryptographically secure token.
Attributes
- Definition Classes
-
CSRFTokenSigner
Sign a token. This produces a new token, that has this token signed with a nonce.
Sign a token. This produces a new token, that has this token signed with a nonce.
This primarily exists to defeat the BREACH vulnerability, as it allows the token to effectively be random per request, without actually changing the value.
Value parameters
- token
-
The token to sign
Attributes
- Returns
-
The signed token
- Definition Classes
-
CSRFTokenSigner