--
You received this message because you are subscribed to the Google Groups "GWT Contributors" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-web-toolkit-contributors+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-web-toolkit-contributors/378e7424-394a-4a04-9f18-1d00536b5fee%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
They are not going to change and plenty of people use it for production but there is a bigger issue:GWT-RPC is deprecated and in maintenance mode for over 2 years now [1].
On Tue, Oct 31, 2017 at 4:51 AM, Rencia Cloete <rencia...@gmail.com> wrote:
Gwt Documentation as well as GWT IN action recommend extending XsrfProtectedService on client side and XsrfProtectedServiceServlet on server side....But both thse methods are still marked as "EXPERIMENTAL and subject to change. Do not use this in production code."What gives? is this a leftover - or are they now safe to use in production?Thanks for your help in advance!
--
You received this message because you are subscribed to the Google Groups "GWT Contributors" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-web-toolkit-co...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-web-toolkit-contributors/378e7424-394a-4a04-9f18-1d00536b5fee%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
--
You received this message because you are subscribed to the Google Groups "GWT Contributors" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-web-toolkit-co...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-web-toolkit-contributors/CAN%3DyUA2Xoq1bKSKtE5j3kanOuzKBwDNuHi%2BY%3Dt4H-Rpg8LxeSw%40mail.gmail.com.
Is there a public announcement equivalent to [1] for external users to read?
вт, 31 окт. 2017 г. в 14:47, 'Goktug Gokdogan' via GWT Contributors <google-web-toolkit-contri...@googlegroups.com>:
They are not going to change and plenty of people use it for production but there is a bigger issue:GWT-RPC is deprecated and in maintenance mode for over 2 years now [1].
On Tue, Oct 31, 2017 at 4:51 AM, Rencia Cloete <rencia...@gmail.com> wrote:
Gwt Documentation as well as GWT IN action recommend extending XsrfProtectedService on client side and XsrfProtectedServiceServlet on server side....But both thse methods are still marked as "EXPERIMENTAL and subject to change. Do not use this in production code."What gives? is this a leftover - or are they now safe to use in production?Thanks for your help in advance!
--
You received this message because you are subscribed to the Google Groups "GWT Contributors" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-web-toolkit-contributors+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-web-toolkit-contributors/378e7424-394a-4a04-9f18-1d00536b5fee%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
--
You received this message because you are subscribed to the Google Groups "GWT Contributors" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-web-toolkit-contributors+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-web-toolkit-contributors/CAN%3DyUA2Xoq1bKSKtE5j3kanOuzKBwDNuHi%2BY%3Dt4H-Rpg8LxeSw%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.
--
You received this message because you are subscribed to the Google Groups "GWT Contributors" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-web-toolkit-contributors+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-web-toolkit-contributors/CAKokkPEEic7jY%3DiCv2u_0L_9Nq_zzprptC0zR%2BT1%2B1tEuVb85w%40mail.gmail.com.
GWT.getModuleBaseURL()= https://localhost:9083/ConsumerMobileAdmin/consumerMobileAdmin/
GWT.getHostPageBaseURL()=https://localhost:9083/ConsumerMobileAdmin/
sample url's for diff tabs:
https://localhost:9083/ConsumerMobileAdmin/ConsumerMobileAdmin.jsp#
https://localhost:9083/ConsumerMobileAdmin/ConsumerMobileAdmin.jsp#webusers:all
the RPC classes use @RemoteServiceRelativePath ... which is wired together in the consumerMobileAdmin-servlet.xml using
<bean class="org.springframework.web.servlet.handler.SimpleUrlHandlerMapping">
<property name="mappings">
....
Both of these:
((ServiceDefTarget)xsrf).setServiceEntryPoint(GWT.getModuleBaseURL() + "xsrf");
//((ServiceDefTarget)xsrf).setServiceEntryPoint(GWT.getHostPageBaseURL() + "xsrf");
Invalid CSRF token found for https://localhost:9083/ConsumerMobileAdmin/xsrf (CsrfFilter)
or
Invalid CSRF token found for https://localhost:9083/ConsumerMobileAdmin/consumerMobileAdmin/xsrf (CsrfFilter)
depending on which of the serviceDefTarget I tried....
Help!
--
You received this message because you are subscribed to a topic in the Google Groups "GWT Contributors" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/google-web-toolkit-contributors/eMf39ktTQ8A/unsubscribe.
To unsubscribe from this group and all its topics, send an email to google-web-toolkit-contributors+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-web-toolkit-contributors/f133bbf1-126f-4de1-874b-1e7f5d995207%40googlegroups.com.
((ServiceDefTarget)xsrf).setServiceEntryPoint("gwt/xsrf");
web.xml:
<servlet>
<servlet-name>xsrf</servlet-name>
<servlet-class>com.google.gwt.user.server.rpc.XsrfTokenServiceServlet</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>xsrf</servlet-name>
<url-pattern>/gwt/xsrf</url-pattern>
</servlet-mapping>
Finally! Turn off the Spring csrf filter in securityContext.xml:
<s:csrf disabled="true"/>
Otherise Spring & Gwt are both tryint to do the same ting and Spring CsrfFilter wants the /
gwt/xsrf to also have a token!
--
You received this message because you are subscribed to a topic in the Google Groups "GWT Contributors" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/google-web-toolkit-contributors/eMf39ktTQ8A/unsubscribe.
To unsubscribe from this group and all its topics, send an email to google-web-toolkit-contributors+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-web-toolkit-contributors/3614585.qjKdrorpsP%40thinkpad.