Summary
Sea-Surf is a Java EE 6 filter that protects against CSRF (Sea-Surf) attacks.
Configuration
You need to put the library and a configuration file into a Java EE Web application.
You can download the jar from this site or using maven:
it.nerdammer sea-surf 1.0.1
Sea-Surf allows you choosing the protection methods on every page:
* Synchronizer token pattern
* HTTP referer check
Synchronizer Token
The synchronizer token can be stored in SESSION or COOKIE: you can make a choice using the configuration file.
Sea-Surf provides two convenience JSTL tags for simplifying this task:
```
<%@ taglib uri="http://www.nerdammer.it/seasurf" prefix="csrf"%>
....
Write the token in a specific posit
