We are currently developing new services using SAP Netweaver Gateway 7.4 and have come accross the Cross-Site Request Forgery protection mechanism.
I've got a couple of simple questions regarding this :-
(a) Can we disable the need for it ?
(b) If we were to use a get service to retrieve a token how long does the token last for ?
Any help appreciated.
Mike