[Owasp-csrfguard] configuration of javascript solution

cecile forella forellacecile at hotmail.fr
Thu Mar 15 11:47:42 UTC 2012

I've configured Owasp csrfguard javascript's solution :
- I've configured my web.xml file
- I've configured the Owasp.CsrfGuard.properties
What do we have to do in order the javascriptServlet to be called? I've tried to put the script :
<script src="/JavaScriptServlet"></script> in my pages but I dont think the servlet is called.
So I always have the following error in the console :
[Error] potential cross-site request forgery (CSRF) attack thwarted

as if the script wasn't called...
Does someone have an idea?

Thanks in advance for your help

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-csrfguard/attachments/20120315/64a2b9bd/attachment.html>

More information about the Owasp-csrfguard mailing list