public class DefaultRequestTokenHandler extends Object implements RequestTokenHandler, org.springframework.context.ApplicationEventPublisherAware
| 构造器和说明 |
|---|
DefaultRequestTokenHandler(RequestTokenStore requestTokenStore,
RequestTokenValidator requestTokenValidator,
boolean requestTokenEnabled,
List<String> urls) |
| 限定符和类型 | 方法和说明 |
|---|---|
protected boolean |
matchRequest(javax.servlet.http.HttpServletRequest request) |
protected RequestToken |
parseRequestToken(javax.servlet.http.HttpServletRequest request) |
void |
setApplicationEventPublisher(org.springframework.context.ApplicationEventPublisher applicationEventPublisher) |
boolean |
support(javax.servlet.http.HttpServletRequest request) |
void |
validate(javax.servlet.http.HttpServletRequest request)
检查防重放请求令牌
|
public DefaultRequestTokenHandler(RequestTokenStore requestTokenStore, RequestTokenValidator requestTokenValidator, boolean requestTokenEnabled, List<String> urls)
public void setApplicationEventPublisher(org.springframework.context.ApplicationEventPublisher applicationEventPublisher)
setApplicationEventPublisher 在接口中 org.springframework.context.ApplicationEventPublisherAwarepublic boolean support(javax.servlet.http.HttpServletRequest request)
protected boolean matchRequest(javax.servlet.http.HttpServletRequest request)
public void validate(javax.servlet.http.HttpServletRequest request)
throws IllegalRequestTokenException
RequestTokenHandlervalidate 在接口中 RequestTokenHandlerIllegalRequestTokenException - 检查到请求是重发攻击,抛出异常。protected RequestToken parseRequestToken(javax.servlet.http.HttpServletRequest request)
Copyright © 2023. All rights reserved.