Hi,
I'm trying to make use of the CsrfPreventionFilter using 7.0.12 so this is what
I have added to the relevant web.xml
<!-- Csrf prevention filter -->
<filter>
<filter-name>CSRFPreventionFilter</filter-name>
<filter-class>org.apache.catalina.filters.CsrfPreventionFilter</filter-class>
<init-param>
<param-name>entryPoints</param-name>
<param-value>/do/Start</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CSRFPreventionFilter</filter-name>
<url-pattern>*</url-pattern>
</filter-mapping>
Notice that as an entry point I have specified '/do/Start' which is fine up to
a point. Meaning that the Start page does load. Trouble is that what loads is
basically what looks like a text-based page. No images, no functionality behind
buttons. Just wondering if some one has had success using this particular
filter and could give me pointers or perhaps an example on how I can properly
use it.
Cheers,
Matt
