Hi It is a topic that has been discussed on :
http://java.net/jira/browse/JAVASERVERFACES_SPEC_PUBLIC-869 Specify CSRF Solution http://java.net/jira/browse/JAVASERVERFACES_SPEC_PUBLIC-559 Support for the "Synchronizer Token" pattern (avoiding double submits) take a look at: http://seamframework.org/Documentation/CrossSiteRequestForgery I believe there is no any extension for csrf in myfaces land in this moment. regards, Leonardo Uribe 2011/9/1 Hampus Wingren <carl.hampus.wing...@bredband.net> > Hi all, > > > > I´m just curious if you have any extensions regarding security related > stuff > such as CSRF protection? > > If not, do know of any such libraries? > > > > > > Regards, > > Hampus > >