[jira] [Commented] (WICKET-7161) add CsrfForm that supports adding tokens to forms

ASF GitHub Bot (Jira) Fri, 08 Aug 2025 00:16:53 -0700


    [ 
https://issues.apache.org/jira/browse/WICKET-7161?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18012780#comment-18012780
 ]


ASF GitHub Bot commented on WICKET-7161:
----------------------------------------

papegaaij commented on PR #1220:
URL: https://github.com/apache/wicket/pull/1220#issuecomment-3166820925

   @reiern70 I don't think it is. Wicket already has 
`ResourceIsolationRequestCycleListener`, which uses the fetch metadata headers. 
These headers are provided by all modern browsers and provide a much cleaner 
way of CSRF protection.




> add CsrfForm that supports adding tokens to forms
> -------------------------------------------------
>
>                 Key: WICKET-7161
>                 URL: https://issues.apache.org/jira/browse/WICKET-7161
>             Project: Wicket
>          Issue Type: Improvement
>            Reporter: Ernesto Reinaldo Barreiro
>            Assignee: Ernesto Reinaldo Barreiro
>            Priority: Major
>
> add a CsrfForm that supports adding tokens to forms



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (WICKET-7161) add CsrfForm that supports adding tokens to forms

Reply via email to