如何在Mustache中使用Spring Security? [英] How to use Spring Security with Mustache?

问题描述

我正在遵循Spring Security参考，并且已经重定向到自定义登录页面，其工作方式如

I'm following the Spring Security reference, and I've got redirection to a custom login page working as described in section 3.3. However, I'm not sure how to get the CSRF token in Mustache (all the examples use JSP). I've tried a few naïve things like this...

{{#_csrf}}
    <input type="hidden" name="{{parameterName}}" value="{{token}}"/>
{{/_csrf}}

...还有这个...

...and this...

{{#CsrfToken}}
    <input type="hidden" name="{{parameterName}}" value="{{token}}"/>
{{/CsrfToken}}

...但是它们不起作用(而且我没想到他们真的可以).如何在Moustache中获得CSRF令牌?

...but they don't work (and I didn't really expect them to). How can I get the CSRF token in Mustache?

我还想知道:我可以在代码中的哪里设置断点，以查看Spring Security作为模型发送到自定义登录视图的内容?

I'm also wondering: Where could I set a breakpoint in my code to see what Spring Security is sending as the model to my custom login view?)

推荐答案

将此添加到您的application.properties:

spring.mustache.expose-request-attributes=true

然后，您可以访问模板中的_csrf请求属性.

Then you have access to the _csrf request attribute in your template.

这篇关于如何在Mustache中使用Spring Security?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！