private scala.Option<String> sessionDomain() { return components.httpConfiguration().session().domain(); }
private CompletionStage<Result> handleTokenError(Http.Request req, RequestHeader taggedRequest, String msg) { CSRFErrorHandler handler = configurator.apply(this.configuration); return handler.handle(taggedRequest.asJava(), msg).thenApply(result -> { if (CSRF.getToken(taggedRequest).isEmpty()) { if (config.cookieName().isDefined()) { Option<String> domain = sessionConfiguration.domain(); return result.discardingCookie(config.cookieName().get(), sessionConfiguration.path(), domain.isDefined() ? domain.get() : null, config.secureCookie()); } return result.removingFromSession(req, config.tokenName()); } return result; }); } }
private CompletionStage<Result> handleTokenError(Http.Request req, RequestHeader taggedRequest, String msg) { CSRFErrorHandler handler = configurator.apply(this.configuration); return handler.handle(taggedRequest.asJava(), msg).thenApply(result -> { if (CSRF.getToken(taggedRequest).isEmpty()) { if (config.cookieName().isDefined()) { Option<String> domain = sessionConfiguration.domain(); return result.discardingCookie(config.cookieName().get(), sessionConfiguration.path(), domain.isDefined() ? domain.get() : null, config.secureCookie()); } return result.removingFromSession(req, config.tokenName()); } return result; }); } }
/** * Places the CSRF token in the session or in a cookie (if a cookie name is configured) */ private Result placeToken(Http.Request req, final Result result, CSRF.Token token) { if (config.cookieName().isDefined()) { scala.Option<String> domain = sessionConfiguration.domain(); Http.Cookie cookie = new Http.Cookie( config.cookieName().get(), token.value(), null, sessionConfiguration.path(), domain.isDefined() ? domain.get() : null, config.secureCookie(), config.httpOnlyCookie(), OptionConverters.toJava(config.sameSiteCookie()).map(c -> c.asJava()).orElse(null)); return result.withCookies(cookie); } return result.addingToSession(req, token.name(), token.value()); } }
private scala.Option<String> sessionDomain() { return components.httpConfiguration().session().domain(); }
/** * Places the CSRF token in the session or in a cookie (if a cookie name is configured) */ private Result placeToken(Http.Request req, final Result result, CSRF.Token token) { if (config.cookieName().isDefined()) { scala.Option<String> domain = sessionConfiguration.domain(); Http.Cookie cookie = new Http.Cookie( config.cookieName().get(), token.value(), null, sessionConfiguration.path(), domain.isDefined() ? domain.get() : null, config.secureCookie(), config.httpOnlyCookie(), OptionConverters.toJava(config.sameSiteCookie()).map(c -> c.asJava()).orElse(null)); return result.withCookies(cookie); } return result.addingToSession(req, token.name(), token.value()); } }
private scala.Option<String> sessionDomain() { return components.httpConfiguration().session().domain(); }