public interface HasSecured
Modifier and Type | Method and Description |
---|---|
boolean |
isSecured()
Verifies if the action is secured.
|
boolean isSecured()
SecurityCookie
to foil XSRF attacks.
Important! Make sure your method returns a value that does not depend on client-side information,
otherwise it could be tampered with to turn a secure action into an insecure one. An example of a bad practice
would be to store a boolean secured
member and return that. Since this field is serialized, the user
could change it on his side. A simple and good practice is simply to return true;
or
return false;
.true
if the action should be secured against XSRF attacks, false
otherwise.Copyright © 2010-2014 ArcBees. All Rights Reserved.