DefaultCrumbIssuer (Jenkins core 2.187 API)

Skip navigation links

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

java.lang.Object
- hudson.security.csrf.CrumbIssuer
- - hudson.security.csrf.DefaultCrumbIssuer

All Implemented Interfaces:

ExtensionPoint, Describable<CrumbIssuer>
```
public class DefaultCrumbIssuer
extends CrumbIssuer
```
A crumb issuing algorithm based on the request principal and the remote address.

Author:

dty

Nested Class Summary

Nested Classes
Modifier and Type Class and Description

static class DefaultCrumbIssuer.DescriptorImpl
- Nested classes/interfaces inherited from class hudson.security.csrf.CrumbIssuer
  CrumbIssuer.RestrictedApi
- Nested classes/interfaces inherited from interface hudson.ExtensionPoint
  ExtensionPoint.LegacyInstancesAreScopedToHudson

Field Summary

Fields
Modifier and Type Field and Description

static boolean EXCLUDE_SESSION_ID
- Fields inherited from class hudson.security.csrf.CrumbIssuer
  DEFAULT_CRUMB_NAME

Constructor Summary

Constructors
Constructor and Description

DefaultCrumbIssuer(boolean excludeClientIPFromCrumb)

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`boolean`	`isExcludeClientIPFromCrumb()`
`protected String`	`issueCrumb(javax.servlet.ServletRequest request, String salt)` Create a crumb value based on user specific information in the request.
`boolean`	`validateCrumb(javax.servlet.ServletRequest request, String salt, String crumb)` Validate a previously created crumb against information in the current request.

Methods inherited from class hudson.security.csrf.CrumbIssuer
all, getApi, getCrumb, getCrumb, getCrumbRequestField, getDescriptor, initStaplerCrumbIssuer, validateCrumb, validateCrumb

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Field Detail
  - EXCLUDE_SESSION_ID
```
@Restricted(value=org.kohsuke.accmod.restrictions.NoExternalUse.class)
public static boolean EXCLUDE_SESSION_ID
```
- Constructor Detail
  - DefaultCrumbIssuer
```
@DataBoundConstructor
public DefaultCrumbIssuer(boolean excludeClientIPFromCrumb)
```
- Method Detail
  - isExcludeClientIPFromCrumb
```
public boolean isExcludeClientIPFromCrumb()
```
  - issueCrumb
```
protected String issueCrumb(javax.servlet.ServletRequest request,
                            String salt)
```
    Create a crumb value based on user specific information in the request. The crumb should be generated by building a cryptographic hash of:
    - relevant information in the request that can uniquely identify the client
    - the salt value
    - an implementation specific guarded secret.
    Specified by:
    
    issueCrumb in class CrumbIssuer
  - validateCrumb
```
public boolean validateCrumb(javax.servlet.ServletRequest request,
                             String salt,
                             String crumb)
```
    Validate a previously created crumb against information in the current request.
    
    Specified by:
    
    validateCrumb in class CrumbIssuer
    
    crumb - The previously generated crumb to validate against information in the current request

Skip navigation links

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

Copyright © 2004–2019. All rights reserved.