on 03-11-2016 10:00 AM
Hi,
Are there any reports to monitor csrf tokens generated?
Reports for
1. CSRF token generated in a period
2. List of CSRF tokens active currently
3. Services & REST method with which a CSRF token was used
regards
Nitesh
You can look in transaction SM05 for active security sessions. Also in table SECURITY_CONTEXT you see all active X-CSRF-Tokens
I don't think that token generation is being logged somewhere
You can activate Gateway logging via /IWFND/TRACES however all requests are being logged not only the ones which require a Token. By default all modifying requests need a Token so maybe you can filter all non-GET's
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
93 | |
11 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.