Google Web Toolkit (GWT) is an open-source set of tools that allows web developers to create and maintain JavaScript front-end applications in Java.
- Google Web Toolkit (Wikipedia)
- Official Documentation (Developer’s Guide)
See this documention on GWT security.
CSRF
In GWT documentation, it states that the last parameter sent in a POST request is the CSRF token – a MD5 hash of the JSESSIONID. Check that the server validates the CSRF token.