[Owasp-csrfguard] New to CSRFGuard 3 - problems - JSF1.2
lucastschmidt.dev at gmail.com
Mon Jun 27 19:12:07 EDT 2011
Hey, I am trying to set up my application to add CSRFGuard as a filter, but
I am encountering a few problems.
using the JSP tag csrf:form into the
authentication page ( /faces/index.html )
If I do this filter configuration into web.xml, when the login page opens,
and it tries to get the token to put into the form, it throws a null
exception, since CsrfGuard isnt instanciated.
And if I do a
basically it tries to filter the authentication page, even when I config
into .properties as a public page.
Anyone can give me a little help? Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-csrfguard