Class DbxWebAuth.CsrfException

All Implemented Interfaces:
Serializable
Enclosing class:
DbxWebAuth

public static final class DbxWebAuth.CsrfException extends DbxWebAuth.Exception
Thrown if the given 'state' parameter doesn't contain the expected CSRF token. This request should be blocked to prevent CSRF attacks.

IMPORTANT: The exception's message must not be shown the the user, but may be logged.

The recommended action is to show an HTTP 403 error page.

See Also:
  • Constructor Details

    • CsrfException

      public CsrfException(String message)