[Seasar-user:20745] S2Flex2 を使用した場合のCSRF対策について

[[E-MAIL ADDRESS DELETED]]

$B$O$8$a$^$7$F!#>>K\$H?=$7$^$9!#(B

S2Flex$B$r;HMQ$7$F%7%9%F%`$r9=C[$7$F$*$j$^$9!#(B
$B8=:_!"(BCSRF($B%/%m%9%5%$%H!&%j%/%(%9%H!&%U%)!<%8%'%j!<(B)$BBP:v$N<BAuJ}K!$r8!F$$7(B
$B$F$*$jG:$s$G$*$j$^$9!#(B

$B;d$NCN<1ITB-$@$H;W$$$^$9$,!"BP:v$r<B;\$5$l$?J}$d%R%s%H$r$*;}$A$NJ}$K$465<x(B
$B$rD:$1$l$P9,$$$G$9!#(B

$B!ZA0Ds![(B
S2Flex$B!"6qBNE*$K$O(BS2Flex2Service$B$r;HMQ$7$F!"%5!<%P!<$KEPO?$5$l$?%5!<%S%9$r(B
$B8F$S=P$7$F$$$k!#(B


$B!Z(BCSRF$BBP:v$K$D$$$F![(B
$B%5!<%S%98F$S=P$7$NA4$F$N2U=j$G(BCSRF$BBP:v$N<BAu$r9T$$$?$$$H9M$($F$$$^$9!#(B
$BFbMF$r4JC1$K5-:\$9$k$H2<5-FbMF$G$9!#(B

$B-!%5!<%P$O!"%o%s%?%$%`%H!<%/%s$r%j%/%(%9%H;~$K%l%9%]%s%9$H$7$FJV$9(B
$B-"%/%i%$%"%s%H$O!"%5!<%S%98F$S=P$7;~$K!"-!$GH/9T$5$l$?%o%s%?%$%`%H!<%/%s$r(B
$BEO$9(B

$B2DG=$G$"$l$P!"%/%i%$%"%s%HB&!J(BFlex$B!K!"%5!<%PB&(B(Java)$B$G$=$l$>$l0l2U=j$N<BAu(B
$B$GBP1~$7$?$$$H;W$C$F$$$^$9!#(B


$B!Z:$$C$F$$$k;v![(B
$B%o%s%?%$%`%H!<%/%s$N<u$1EO$7$N$?$a!"(BS2Flex2Service$B$N%j%/%(%9%H$H%l%9%]%s%9(B
$B$NA42U=j$K(B
$B$=$l$>$l<BAu$7$J$1$l$P$J$i$J$$$N$G$O$H;W$C$F$$$^$9!#(B
$B$J$s$H$+%7%s%W%k$J<BAu$K:Q$^$;$?$$$G$9!#(B

$B%5!<%PB&$O!"(Bfilter$B$rMxMQ$9$l$P2DG=$+$b$7$l$^$;$s$,!"6qBNE*$JBP1~:v$^$GF3$-(B
$B=P$;$^$;$s$G$7$?!#(B


$B4pK\E*$J<ALd$+$b$7$l$^$;$s$N$G!"62=L$G$4$6$$$^$9$,!"$I$&$>$h$m$7$/$*4j$$CW(B
$B$7$^$9!#(B


$B>>K\(B
-------------- next part --------------
HTML$B$NE:IU%U%!%$%k$rJ]4I$7$^$7$?(B...
URL: <http://ml.seasar.org/archives/seasar-user/attachments/20110512/e773f323/attachment.html>