I'm using GWT 2.10.0, and I'd like to deactivate the RPC token only during development, but have it activated in production. Any suggestions on how I can achieve this?
Thank you.
1
There are 1 best solutions below
Related Questions in GWT
- When accessing the page with gwt it is blank, it does not load
- Encountering bindException when running CodeServer
- How to get variable from GWT Callback
- IntelliJ Idea won't stop on breakpoints while GWT debugging in Super Dev Mode
- How to debug GWT project in Idea
- [Resolved]How to set up gwt super dev mode with the new gwt maven plugin with a web application using Errai framework?
- Integrate DominoKit/-UI Elements Into Existing GWT Application
- Avro after upgrading to JDK 17
- Draw graph in GWT
- How do I stop maven-jetty-plugin jetty:run output warnings: scanned from multiple locations
- Type incoherence when compiling Java code through GWT
- Application not loading with new GWT Maven Plugin
- Getting the error while updating GWT 2.5.1 to 2.11.0 and sencha GXT 3.1.1 to 4.1
- Playing an audio in the front-end without storing any cache to avoid illegal downloading
- how to add a static value to a FlexTable in the ui.xml file GWT?
Related Questions in GWT-RPC
- How to get variable from GWT Callback
- How to configure GWT super dev mode for Intellij Idea recent versions 2023
- How to disable rpc token in GWT
- Problem upgrading from gwt 2.9 to GWT 2.10
- GWT: Deserialize objects sent/received via websocket
- GWT RPC Exception : Attempt to deserialize an object of type class java.util.HashMap when an object of type class java.lang.String is expected
- No source code is available for type org.springframework.security.core.GrantedAuthority
- GWT: Client procedure and rpc request are always called several times with multiple thread id
- GWT - define async services with a subclass of AsyncCallback
- GWT application running on windows and not on linux with same configuration
- TTFB High for GWT-RPC Calls
- jreLeakPrevention.gcDaemonFail Error while running GWT application
- Strange uncaught error with GWT, UmbrellaException
- GWT RPC serialization
- GWT RPC ServerSerializationStreamReader.deserialize throwing java.lang.ClassNotFoundException: https:
Related Questions in GWT2
- How to disable rpc token in GWT
- Problem upgrading from gwt 2.9 to GWT 2.10
- How to debug GWT application in Eclipse
- GWT - Inject value using Guice @Named
- Is there a way to remove the default GWT theme completely?
- GWT-GXT 3.0 Graph
- IntelliJ Ultimate GWTP - Platform not loading archetypes
- GWT compile not working if using gwt-chosen-3.0.1
- GWT UploadServlet maxSize not being respected
- Can we write clickhandler on com.google.gwt.user.client.ui.Frame in GWT? is there any option to load PDF file in GWT?
- How I can control flow of execution in GWT?
- GWT File Upload form submit POST request not able to read file
- GWT Cell Table selection with Checkbox
- How to expose JS patch function of Incremental DOM library in GWT app using @JsInterop
- Uses of .devmode.js file in production mode
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
It isn't quite clear what you're asking or how you've implemented your own token approach already, so to restate, you have a
com.google.gwt.user.client.rpc.RpcTokenimplementation that can be serialized, and acom.google.gwt.user.server.rpc.XsrfProtectannotation on your RemoteService type. Then you extendedXsrfProtectedServiceServletto provide your server-side implementation of theRemoteService.XsrfProtectedServiceServletextendsAbstractXsrfProtectedServiceServlet, which extendsRemoteServiceServletitself.RemoteServiceServlet provides an empty methodonAfterRequestDeserializedthat can be overridden, andAbstractXsrfProtectedServiceServlet` provides a simple implementation, shared below:Then
AbstractXsrfProtectedServiceServletprovides a simple protected implementation ofshouldValidateXsrfToken, but leavesvalidateXsrfTokenabstract, so that your superclass,XsrfProtectedServiceServlet, can override it. Both of these seem like a reasonable extension point to provide custom functionality - you can override either method, and if you determine you are running in production, call super, otherwise if you are in development/test, ignore the rest of the check and simply return success.For example, assuming you have a
isRunningInProduction()method (up to you to implement, either of these should solve your problem:or
Note that providing both will also work, but only
shouldValidateXsrfTokenwill ever be called.