dwr:CSRF Security Error

原创

mb64dde5ac32416 2023-08-18 13:54:03 ©著作权

文章标签 dwr 文件上传 CSRF 文件上传 xml文件 文章分类 Html/CSS 前端开发

©著作权归作者所有：来自51CTO博客作者mb64dde5ac32416的原创作品，请联系作者获取转载授权，否则将追究法律责任

今天用dwr帮一童鞋做一哈文件上传，结果老是报错：CSRF Security Error 。后面查了一下，修改一下web.xml文件即可

原：

<servlet>
    <servlet-name>DWRServlet</servlet-name>
    <servlet-class>org.directwebremoting.servlet.DwrServlet</servlet-class>
    <init-param>
	<param-name>debug</param-name>
	<param-value>true</param-value>
	</init-param>
	<init-param>   
	<param-name>activeReverseAjaxEnabled</param-name>   
	<param-value>true</param-value>   
	</init-param> 
  </servlet>
  <servlet-mapping>
    <servlet-name>DWRServlet</servlet-name>
    <url-pattern>/dwr/*</url-pattern>
  </servlet-mapping>

添加下面红色部分

<servlet>
    <servlet-name>DWRServlet</servlet-name>
    <servlet-class>org.directwebremoting.servlet.DwrServlet</servlet-class>
    <init-param>
	<param-name>debug</param-name>
	<param-value>true</param-value>
	</init-param>
	<init-param>   
	<param-name>activeReverseAjaxEnabled</param-name>   
	<param-value>true</param-value>   
     </init-param> 
     <init-param>
             <param-name>crossDomainSessionSecurity</param-name>
             <param-value>false</param-value>
      </init-param>
      <init-param>
            <param-name>allowScriptTagRemoting</param-name>
            <param-value>true</param-value>
      </init-param>

  </servlet>
  <servlet-mapping>
    <servlet-name>DWRServlet</servlet-name>
    <url-pattern>/dwr/*</url-pattern>
  </servlet-mapping>