CSRF Security Error解决办法
来源:互联网 发布:2017年7月经济数据 编辑:程序博客网 时间:2024/05/15 02:06
在myeclipse上部署项目,遇到如下问题:
错误描述:
org.directwebremoting.dwrp.BaseDwrpHandler - A request has been denied as a potential CSRF attack.
org.directwebremoting.dwrp.BaseCallHandler - Exception while processing batch
java.lang.SecurityException: CSRF Security Error
at org.directwebremoting.dwrp.BaseDwrpHandler.checkNotCsrfAttack(BaseDwrpHandler.java:85)
at org.directwebremoting.dwrp.BaseCallHandler.handle(BaseCallHandler.java:76)
at org.directwebremoting.servlet.UrlProcessor.handle(UrlProcessor.java:120)
at org.directwebremoting.servlet.DwrServlet.doPost(DwrServlet.java:141)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:710)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.apache.struts2.dispatcher.ActionContextCleanUp.doFilter(ActionContextCleanUp.java:99)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:230)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:104)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:261)
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:844)
at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process (Http11Protocol.java:581)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:619)
解决办法:
修改 web.xml 中 DWR 配置信息
原:
<servlet>
<servlet-name>dwr-invoker</servlet-name>
<servlet-class>org.directwebremoting.spring.DwrSpringServlet</servlet-class>
<init-param>
<param-name>debug</param-name>
<param-value>true</param-value>
</init-param>
</servlet>
加入跨域调用配置信息(红色部分),修改为:
<servlet>
<servlet-name>dwr-invoker</servlet-name>
<servlet-class>org.directwebremoting.spring.DwrSpringServlet</servlet-class>
<init-param>
<param-name>debug</param-name>
<param-value>true</param-value>
</init-param>
<init-param>
<param-name>crossDomainSessionSecurity</param-name>
<param-value>false</param-value>
</init-param>
<init-param>
<param-name>allowScriptTagRemoting</param-name>
<param-value>true</param-value>
</init-param>
</servlet>
- CSRF Security Error解决办法
- CSRF Security Error解决办法
- 【bug】CSRF Security Error解决办法
- DWR CSRF Security Error
- CSRF security error
- CSRF Security Error
- DWR 弹出 "CSRF Security Error"
- DWR CSRF Security Error(tomcat7中会出现这个错误)
- DWR在Tomcat报错:CSRF Security Error
- Spring Security csrf学习
- springboot security CSRF问题
- security禁用csrf
- spring security csrf 学习笔记
- spring boot security csrf ignore
- 关于浏览器Security error code: 1000错误的解决办法
- faultString = "Security error accessing url" 问题的解决办法
- flex报错:Security error accessing url 最简单解决办法
- ERROR security.UserGroupInformation: PriviledgedActionException + java.net.ConnectException解决办法
- 关于 keil mdk lpc2100 启动文件的思考
- Java中String,StringBuilder和StringBuffer的区别
- 母函数
- 观察者模式(Observer)----行为笔记
- Java存储和IO常用语句
- CSRF Security Error解决办法
- 1
- Linux命令diff
- 优秀学习资料博客地址
- (转)Windows远程登陆Linux桌面的方法
- xfire webservice 总结
- 在Zend Framework 应用中使用Smarty做模版引擎
- Java 中常用集合性能比较
- 传智博客JAVA基础第四天