Detail about CSRF token fetch request
Detail about CSRF token fetch request
Jerry Wang
发布于 2019-09-16 14:52:11
发布于 2019-09-16 14:52:11
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://jerry.blog.csdn.net/article/details/100849755
Created by Jerry Wang, last modified on Jun 17, 2015
- updateSecurityToken
- bTokenHandling
- x-csrf-token
- oServiceData.securityToken
- ODataModel._createBatchRequest
- ODataModel.prototype.refreshSecurityToken
Who has started this csrf token request? It is automatically done by oDataModel framework.
Now we know that everytime an HTTP post request is sent, the token will be forced to fresh from backend.
So it means it will not be repeatedly called every time we select another item in navigation list.
And by default, all oData instance should have set this flag as true, which could be observed in constructor.
And by default, all oData instance should have set this flag as true, which could be observed in constructor.
Created by Jerry Wang, last modified on Jul 22, 2015
- updateSecurityToken
- Security
- Token
- x-csrf-token
- bTokenHandling 以opportunity为例:
如果token不available,就发Odata request到后台去取:
问题:this.bTokenHandling什么时候置为true?
在ODataModel的构造函数里。
本文参与 腾讯云自媒体分享计划,分享自作者个人站点/博客。
原始发表:2019年09月15日,如有侵权请联系 cloudcommunity@tencent.com 删除
评论
登录后参与评论
推荐阅读
目录