Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-06-15 16:42:14 +00:00
Code Issues Packages Projects Releases Wiki Activity

SEC-2832: Update request attributes with new CsrfToken

Browse Source
This commit is contained in:
Stillglade 2015-01-28 09:35:27 -05:00 committed by Rob Winch
parent 27c7cd150b
commit aa0a5b96ab
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
web/src/main/java/org/springframework/security/web/csrf/CsrfAuthenticationStrategy.java
View File

@ -56,6 +56,8 @@ public final class CsrfAuthenticationStrategy implements
CsrfToken newToken = this.csrfTokenRepository.generateToken(request);
this.csrfTokenRepository.saveToken(null, request, response);
this.csrfTokenRepository.saveToken(newToken, request, response);
request.setAttribute(CsrfToken.class.getName(), newToken);
request.setAttribute(newToken.getParameterName(), newToken);
}
}
}
}