1. Setup an action to be called before the form you want to protect.
2. Before the action returns with a forwards to the form, call
saveToken(request)
3. The form will submit back to an action, in that action call
isTokenValid(request) to see if you have a valid token. If so, call
resetToken; if not return a forward to an error page.
See also SaveRegistrationAction in the example application.
"Suriyanarayanan, Senthil Kumar" wrote:
>
> Ted,
> Can you please elaborate "prepares the form" and "processes the
> form". Preferably with an example or code snippet.
>
> Thanks
> Senthil Kumar.S