It's not a secret anymore!
The moose likes BEA/Weblogic and the fly likes cross domain error Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Products » BEA/Weblogic
Bookmark "cross domain error" Watch "cross domain error" New topic

cross domain error

Sankarsan Padhy

Joined: Aug 01, 2006
Posts: 12

i am deploying an ear file to weblogic 11g. It deploys successfully but is throwing an error as below while accessing the application.

[org.directwebremoting.dwrp.Batch] ERROR 15:24:38,703: A request has been denied as a potential CSRF attack.

Please help me if you have encountered like this anytime before.


Sankarsan padhy<br />Software Engineer
Suraj Jadhav

Joined: Mar 10, 2010
Posts: 25
The ear file that you are deploying is using CSRF Guard feature. CSRF guard is feature that avoids Cross Site Scripting. On accessing the application, CSRF Guard generates one random token and appends it to the URL of application which cannot be tempered. You can disable this feature by disabling it into its configuration property if you really don't want this feature.

You can get more details about this on
I agree. Here's the link:
subject: cross domain error
It's not a secret anymore!