Configure CSRF Guard
Use this procedure to protect Data Manager, Reports, and Deployment from CSRF attacks.
1. Navigate to the directory, < Software AG_directory >/profiles/ODE/workspace/webapps/onedata/WEB-INF/classes/.
2. Open the Owasp.CsrfGuard.properties file.
3. Set org.owasp.csrfguard.Enabled property to true.
The default value is false.
4. If your operating system is IBM AIX, add the following property at the end of the Owasp.CsrfGuard.properties file:
org.owasp.csrfguard.PRNG.Provider=IBMJCE
5. Save and close the file.
6. Navigate to the directory, < Software AG_directory >/profiles/ODE/workspace/webapps/onedata/WEB-INF/.
7. Open the web.xml file.
8. In the property referer-pattern , specify a regular expression that describes the HTTP referer header value required to access the OneData.
Example: If your set the referer-pattern as .*localhost.*. OneData only allows access to requests with HTTP referer patterns starting with localhost.
Note:
The default value of referer-pattern property is .*.* . This value allows all HTTP referer patterns to access OneData.
9. Save and close the file.