package com.iwhalecloud.dbepecsp.sigma.gateway.config;
import org.apache.tomcat.util.http.Rfc6265CookieProcessor;
import org.apache.tomcat.util.http.SameSiteCookies;
import org.springframework.boot.web.embedded.tomcat.TomcatContextCustomizer;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
/**
* 设置cookie的SameSite属性,防CSRF
* @version 1.0
* @date 2021/11/19
*/
@Configuration
public class TomcatConfiguration {
@Bean
public TomcatContextCustomizer sameSiteCookiesConfig() {
return context -> {
final Rfc6265CookieProcessor cookieProcessor = new Rfc6265CookieProcessor();
// 设置Cookie的SameSite
cookieProcessor.setSameSiteCookies(SameSiteCookies.LAX.getValue());
context.setCookieProcessor(cookieProcessor);
};
}
}
无需其他操作,此类加载后可覆写Tomcat配置
Java Cookie添加SameSite属性
免责声明:文章转载自《Java Cookie添加SameSite属性》仅用于学习参考。如对内容有疑问,请及时联系本站处理。
上篇[SAP ABAP开发技术总结]面向对象OOJavaScript核心之事件详解(EventTarget接口,js事件传播,Event对象)下篇
宿迁高防,2C2G15M,22元/月;香港BGP,2C5G5M,25元/月 雨云优惠码:MjYwNzM=