-
Type:
Feature Request
-
Resolution: Unresolved
-
Priority:
L3 - Default
-
Affects Version/s: None
-
Component/s: spring-boot, webapp
To avoid conflicts with other applications that use the same cookie name. The default should remain XSRF-TOKEN.
In these locations:
- Backend: "Classic" webapps (via web.xml)
- Backend: Webapps in Spring Boot (via application properties)
- Frontend: e.g. via a config.js
1.
|
In Webapps, I can change the csrf cookie name |
|
Closed | Unassigned |
2.
|
CSRF cookie name set by server can be changed |
|
Closed | Nikola Koevski |
3.
|
I can read documentation how to change the csrf cookie name in webapps |
|
Closed | Unassigned |