DefaultCSRFTokenSigner

Value Members

1. final def !=(arg0: Any): Boolean

   

   Definition Classes

   AnyRef → Any

2. final def ##(): Int

   

   Definition Classes

   AnyRef → Any

3. final def ==(arg0: Any): Boolean

   

   Definition Classes

   AnyRef → Any

4. final def asInstanceOf[T0]: T0

   

   Definition Classes

   Any

5. def clone(): AnyRef

   

   Attributes

   protected[java.lang]

   Definition Classes

   AnyRef

   Annotations

   @throws( ... )

6. def compareSignedTokens(tokenA: String, tokenB: String): Boolean

   

   Compare two signed tokens

   Compare two signed tokens

   Definition Classes

   DefaultCSRFTokenSigner → CSRFTokenSigner

7. def constantTimeEquals(a: String, b: String): Boolean

   

   Constant time equals method.

   Constant time equals method.

   Given a length that both Strings are equal to, this method will always run in constant time. This prevents timing attacks.

   Definition Classes

   DefaultCSRFTokenSigner → CSRFTokenSigner

8. final def eq(arg0: AnyRef): Boolean

   

   Definition Classes

   AnyRef

9. def equals(arg0: Any): Boolean

   

   Definition Classes

   AnyRef → Any

10. def extractSignedToken(token: String): Option[String]

    

    Extract a signed token that was signed by CSRFTokenSigner.signToken.

    Extract a signed token that was signed by CSRFTokenSigner.signToken.

    token

    The signed token to extract.

    returns

    The verified raw token, or None if the token isn't valid.

    Definition Classes

    DefaultCSRFTokenSigner → CSRFTokenSigner

11. def finalize(): Unit

    

    Attributes

    protected[java.lang]

    Definition Classes

    AnyRef

    Annotations

    @throws( classOf[java.lang.Throwable] )

12. def generateSignedToken: String

    

    Generate a signed token

    Generate a signed token

    Definition Classes

    DefaultCSRFTokenSigner → CSRFTokenSigner

13. def generateToken: String

    

    Generate a cryptographically secure token

    Generate a cryptographically secure token

    Definition Classes

    DefaultCSRFTokenSigner → CSRFTokenSigner

14. final def getClass(): Class[_]

    

    Definition Classes

    AnyRef → Any

15. def hashCode(): Int

    

    Definition Classes

    AnyRef → Any

16. final def isInstanceOf[T0]: Boolean

    

    Definition Classes

    Any

17. final def ne(arg0: AnyRef): Boolean

    

    Definition Classes

    AnyRef

18. final def notify(): Unit

    

    Definition Classes

    AnyRef

19. final def notifyAll(): Unit

    

    Definition Classes

    AnyRef

20. def signToken(token: String): String

    

    Sign a token.

    Sign a token. This produces a new token, that has this token signed with a nonce.

    This primarily exists to defeat the BREACH vulnerability, as it allows the token to effectively be random per request, without actually changing the value.

    token

    The token to sign

    returns

    The signed token

    Definition Classes

    DefaultCSRFTokenSigner → CSRFTokenSigner

21. final def synchronized[T0](arg0: ⇒ T0): T0

    

    Definition Classes

    AnyRef

22. def toString(): String

    

    Definition Classes

    AnyRef → Any

23. final def wait(): Unit

    

    Definition Classes

    AnyRef

    Annotations

    @throws( ... )

24. final def wait(arg0: Long, arg1: Int): Unit

    

    Definition Classes

    AnyRef

    Annotations

    @throws( ... )

25. final def wait(arg0: Long): Unit

    

    Definition Classes

    AnyRef

    Annotations

    @throws( ... )