anthonyraymond/joal
1
1
Fork 0
mirror of https://github.com/anthonyraymond/joal.git synced 2024-11-10 17:12:36 +08:00
Code Issues Projects Releases Packages Wiki Activity

Add a todo to re-enable WebSocket CSRF

Browse source
This commit is contained in:
anthonyraymond 2017-07-31 01:25:46 +02:00
parent 640a33fd85
commit f47f7d9e19
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
src/main/java/org/araymond/joal/web/config/security/WebSocketAuthorizationSecurityConfig.java
View file

@ -17,6 +17,7 @@ public class WebSocketAuthorizationSecurityConfig extends AbstractSecurityWebSoc
messages.anyMessage().authenticated();
}
// TODO : Add CSRF token support: https://docs.spring.io/spring-security/site/docs/current/reference/html/websocket.html#websocket-sameorigin-csrf
@Override
protected boolean sameOriginDisabled() {
return true;