IntelliJ Java IDE
The moose likes BEA/Weblogic and the fly likes cross domain error Big Moose Saloon
  Search | Java FAQ | Recent Topics
Register / Login
JavaRanch » Java Forums » Products » BEA/Weblogic
Reply Bookmark "cross domain error" Watch "cross domain error" New topic
Author

cross domain error

Sankarsan Padhy
Greenhorn

Joined: Aug 01, 2006
Posts: 12
posted private message
0
Quote
Hi,

i am deploying an ear file to weblogic 11g. It deploys successfully but is throwing an error as below while accessing the application.


[org.directwebremoting.dwrp.Batch] ERROR 15:24:38,703: A request has been denied as a potential CSRF attack.

Please help me if you have encountered like this anytime before.

Thanks
Sankarsan

Sankarsan padhy<br />Software Engineer
Suraj Jadhav
Greenhorn

Joined: Mar 10, 2010
Posts: 21
posted private message
0
Quote
The ear file that you are deploying is using CSRF Guard feature. CSRF guard is feature that avoids Cross Site Scripting. On accessing the application, CSRF Guard generates one random token and appends it to the URL of application which cannot be tempered. You can disable this feature by disabling it into its configuration property if you really don't want this feature.

You can get more details about this on https://www.owasp.org/index.php/Category:OWASP_CSRFGuard_Project.
 
 
subject: cross domain error
 
Threads others viewed
Servlet.service() for servlet action threw exception java.lang.OutOfMemoryError: PermGen space
WA #1.....word association
Error when Stopping server
Tag Library supports namespace
Can't get the result of factorial method
developer file tools

cast iron skillet 49er

more from paul wheaton's glorious empire of web junk: cast iron skillet diatomaceous earth rocket mass heater sepp holzer raised garden beds raising chickens lawn care CFL flea control missoula heat permaculture