The name of the token.
If defined, the name of the cookie to read the token from/write the token to.
If using a cookie, whether it should be secure.
If using a cookie, whether it should have the HTTP only flag.
How much of the POST body should be buffered if checking the body for a token.
Whether tokens should be signed.
Returns true if a request for that method should be checked.
Returns true if a request for that content type should be checked.
The name of the HTTP header to check for tokens from.
A function that decides based on the headers of the request if a check is needed.
Whether to bypass the CSRF check if the CORS filter trusts this origin
Whether to bypass the CSRF check if the CORS filter trusts this origin
Returns true if a request for that content type should be checked.
Returns true if a request for that method should be checked.
If defined, the name of the cookie to read the token from/write the token to.
The name of the HTTP header to check for tokens from.
If using a cookie, whether it should have the HTTP only flag.
How much of the POST body should be buffered if checking the body for a token.
If using a cookie, whether it should be secure.
A function that decides based on the headers of the request if a check is needed.
Whether tokens should be signed.
The name of the token.
CSRF configuration.
The name of the token.
If defined, the name of the cookie to read the token from/write the token to.
If using a cookie, whether it should be secure.
If using a cookie, whether it should have the HTTP only flag.
How much of the POST body should be buffered if checking the body for a token.
Whether tokens should be signed.
Returns true if a request for that method should be checked.
Returns true if a request for that content type should be checked.
The name of the HTTP header to check for tokens from.
A function that decides based on the headers of the request if a check is needed.
Whether to bypass the CSRF check if the CORS filter trusts this origin