Hi All,
I am using Jdeveloper 12.2.1. I am trying to achieve custom security in ADF. For that I am using CSRF token (Cross Site Request Forgery). Once user logged in I can create the CSRF TOKEN and set into session. Now the issue is, I have to compare the the session TOKEN with HTTP Response header TOKEN or invisible attribute in index.jspx. After Successful login tried to set the TOKEN in HTTP Response but not able to see the token in browser network mode. So tried to set the TOKEN in index.jspx invisible input text. But the problem is it need to be compare in Filter level. I am not sure how to use the FacesContext in filter. Can you please update me how to compare the CSRF token in ADF index.jspx page?
Thanks,
ArunkumarD