4f1ca7179b83ed5e0421b63cd85be19c29edb8f3 - gerrit

commit	4f1ca7179b83ed5e0421b63cd85be19c29edb8f3	[log] [tgz]
author	Shawn O. Pearce <sop@google.com>	Sat Aug 01 12:41:40 2009 -0700
committer	Shawn O. Pearce <sop@google.com>	Sat Aug 01 12:41:40 2009 -0700
tree	fdfa7b9e7ba5c98bb7857b74fff24892175973ae
parent	0b9ac5aac50ee5566ad21e0d262672193223cbce [diff]

Avoid XSRF initialization requests by using one token for the context

By using a single XSRF token for the entire web application context
we can avoid needing to issue a dummy POST, wait for an XSRF reply,
then reissue the real request every time we want to use a new proxy
we haven't touched yet.  This speeds up many of the response times
by cutting out a full round-trip.

We can improve on that further by embedding a valid XSRF token in
the host page, as part of the state data we pass down into the
client UI.

Signed-off-by: Shawn O. Pearce <sop@google.com>

pom.xml[diff]
src/main/java/com/google/gerrit/client/Gerrit.java[diff]
src/main/java/com/google/gerrit/client/HostPageData.java[diff]
src/main/java/com/google/gerrit/server/http/GerritCall.java[diff]
src/main/java/com/google/gerrit/server/http/HostPageServlet.java[diff]

5 files changed

tree: fdfa7b9e7ba5c98bb7857b74fff24892175973ae

.settings/
Documentation/
src/
.gitignore
COPYING
gerrit_debug.launch
gerrit_macos.launch
GoogleFormat.xml
INSTALL
pom.xml
SUBMITTING_PATCHES
to_hosted.sh
to_jetty.sh