ServerCsrfDsl

A Kotlin DSL to configure ServerHttpSecurity CSRF protection using idiomatic Kotlin code.

Eleftheria Stein

5.4

Constructors

constructor()

var accessDeniedHandler: ServerAccessDeniedHandler?

the ServerAccessDeniedHandler used when a CSRF token is invalid.

var csrfTokenRepository: ServerCsrfTokenRepository?

the ServerCsrfTokenRepository used to persist the CSRF token.

var csrfTokenRequestHandler: ServerCsrfTokenRequestHandler?

the ServerCsrfTokenRequestHandler that is used to make the CSRF token available as an exchange attribute

var requireCsrfProtectionMatcher: ServerWebExchangeMatcher?

the ServerWebExchangeMatcher used to determine when CSRF protection is enabled.

Disables CSRF protection