Make Primefaces file upload button to work, in a primefaces + spring website when CSRF protection is enabled without avoiding the protection
I have a demo application consisting of one form (dashboard.xhtml) which allows user to select a file and then add a row to a table. To do this, it has two Primefaces File upload buttons, the first uses simple mode to load files, the second uses advanced mode.
When CSRF (Cross-site request forgery) protection (http.csrf().disable(); in WebSecurityConfigurer) is disabled, both buttons work fine, but as soon as I Enable CSRF protection (by commenting out the line http.csrf().disable(); ) the simple mode button stops working. Application is built with Maven and JSF 2.3.14, Spring 5.3.27 and Primefaces 12.0.0 frameworks.
screenshot.
I tried to use JSF upload button, it is working fine but the designed is not aligned with Primefaces simple mode button and I'm not able to modify it.
This has been fixed for PrimeFaces 13.0.6: https://github.com/primefaces/primefaces/pull/11427
- Math.Sin() gives incorrect value
- How to run my python script when the sunOS is start booting
- Express-session: not resetting cookie expiration on each request
- Getting a stack overflow exception when normalizing a vector
- Edit default summary function in R gives error for multiple variables
- What was a For loop? Why isn't it needed in R?
- How to use download button in shiny and save results in various formats (csv, texte, pdf, spss...)?
- Why are there two assignment operators, `<-` and `->` in R?
- lm()$assign: what is it?
- How to get the value of list(...) in R and S functions
- Design matrix for MLM from library(lme4) with fixed and random effects
- how to generate elements not included in my sample
- Create a matrix with gradually changing values without a for loop
- Emacs ESS and S-plus ( S+ ) 8.1 compatability
- How to lag date-index in a time-series in R?
- Nonlinear regression in R / S
- Calling R from S-Plus?