CsrfDoubleSubmitCookie

actix_csrf_middleware

Struct CsrfDoubleSubmitCookie

pub struct CsrfDoubleSubmitCookie {
    pub http_only: bool,
    pub secure: bool,
    pub same_site: SameSite,
}

Expand description

Cookie flags for tokens when using the Double-Submit Cookie pattern.

http_only: Must be false so client code can read the token and mirror it into a header or form field.
secure: Should be true in production to restrict cookies to HTTPS.
same_site: Choose Strict or Lax depending on your cross-site needs.

§Examples

use actix_csrf_middleware::{CsrfMiddlewareConfig, CsrfDoubleSubmitCookie};
use actix_web::cookie::SameSite;

let secret = b"aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa";
let cfg = CsrfMiddlewareConfig::double_submit_cookie(secret)
    .with_token_cookie_config(CsrfDoubleSubmitCookie {
        http_only: false,
        secure: true,
        same_site: SameSite::Strict,
    });

Fields§

§http_only: bool

If true, JavaScript cannot read the cookie

§secure: bool

Restrict cookies to HTTPS in production

§same_site: SameSite

SameSite policy controlling cross-site cookie sending

Trait Implementations§

impl Clone for CsrfDoubleSubmitCookie

fn clone(&self) -> CsrfDoubleSubmitCookie

Returns a duplicate of the value. Read more

1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more

Auto Trait Implementations§

impl Freeze for CsrfDoubleSubmitCookie

impl RefUnwindSafe for CsrfDoubleSubmitCookie

impl Send for CsrfDoubleSubmitCookie

impl Sync for CsrfDoubleSubmitCookie

impl Unpin for CsrfDoubleSubmitCookie

impl UnwindSafe for CsrfDoubleSubmitCookie

Blanket Implementations§

impl<T> Any for T
where T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for T
where T: ?Sized,

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for T
where T: ?Sized,

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> CloneToUninit for T
where T: Clone,

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)

Performs copy-assignment from self to dest. Read more

impl<T> From<T> for T

fn from(t: T) -> T

Returns the argument unchanged.

impl<T> Instrument for T

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more

impl<T, U> Into<U> for T
where U: From<T>,

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T> Same for T

type Output = T

Should always be Self

impl<T> ToOwned for T
where T: Clone,

type Owned = T

The resulting type after obtaining ownership.

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more

impl<T, U> TryFrom<U> for T
where U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

fn vzip(self) -> V

impl<T> WithSubscriber for T

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more

impl<T> ErasedDestructor for T
where T: 'static,