com.gwtplatform.dispatch.shared

Interface HasSecured

All Known Subinterfaces:

Action<R>, RestAction<R>

All Known Implementing Classes:

AbstractRestAction, ActionImpl, BatchAction, TestAction, UnsecuredActionImpl

public interface HasSecured

Indicates that the XSRF protection for an action can be toggled.

Method Summary

Methods

Modifier and Type	Method and Description
boolean	isSecured() Verifies if the action is secured.

Method Detail

isSecured

boolean isSecured()

Verifies if the action is secured. Secured actions perform a number of extra security checks, such as validating the SecurityCookie to foil XSRF attacks.

Important! Make sure your method returns a value that does not depend on client-side information, otherwise it could be tampered with to turn a secure action into an insecure one. An example of a bad practice would be to store a boolean secured member and return that. Since this field is serialized, the user could change it on his side. A simple and good practice is simply to return true; or return false;.

Returns:

true if the action should be secured against XSRF attacks, false otherwise.