info.michael-simons.eu

At the end of last year, Spring Security 3.2 was released and brought a lot of new features, among them a built-in “Cross Site Request Forgery” protection”. Nearly two years earlier i wrote my CSRF protection implementation with Spring Security 3.1, have a look here. I really like the built-in implementation and most of it […]

Read the complete article »

Note: This tutorial is for Spring Security 3.1, an updated version that uses the build-in CSRF protection of Spring Security 3.2 can be found here CSRF Attacks still seems to be a problem, a pity that there is no standard solution in the Spring 3.1 framework. Although not probably, i wanted to protect my projects […]

Read the complete article »