ngmodule
Configures XSRF protection support for outgoing requests.
class HttpClientXsrfModule { static disable(): ModuleWithProviders<HttpClientXsrfModule> static withOptions(options: { cookieName?: string; headerName?: string; } = {}): ModuleWithProviders<HttpClientXsrfModule> }
For a server that supports a cookie-based XSRF protection system, use directly to configure XSRF protection with the correct cookie and header names.
If no names are supplied, the default cookie name is XSRF-TOKEN
and the default header name is X-XSRF-TOKEN
.
disable() |
---|
Disable the default XSRF protection. |
|
withOptions() | |||
---|---|---|---|
Configure XSRF protection. | |||
|
options | object | An object that can specify either or both cookie name or header name.
Optional. Default is |
Provider |
---|
HttpXsrfInterceptor |
{ provide: HTTP_INTERCEPTORS, useExisting: HttpXsrfInterceptor, multi: true } |
{ provide: HttpXsrfTokenExtractor, useClass: HttpXsrfCookieExtractor } |
{ provide: XSRF_COOKIE_NAME, useValue: 'XSRF-TOKEN' } |
{ provide: XSRF_HEADER_NAME, useValue: 'X-XSRF-TOKEN' } |
© 2010–2020 Google, Inc.
Licensed under the Creative Commons Attribution License 4.0.
https://v10.angular.io/api/common/http/HttpClientXsrfModule