Package org.springframework.extensions.webscripts.servlet

Class SecurityHeadersFilter

  • All Implemented Interfaces:
    javax.servlet.Filter
    public class SecurityHeadersFilter
extends java.lang.Object
implements javax.servlet.Filter
    A filter adding HTTP response headers to incoming requests to improve security for the webapp. The logic is configurable making it possible to configure which headers that shall be added.
    Since:
    6.11 NOTE: Copied from Slingshot project to WebScripts 6.11 on 5/11/2016
    Author:
    Erik Winlof

    • Method Summary

      All Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      void destroy()  
      void doFilter​(javax.servlet.ServletRequest servletRequest, javax.servlet.ServletResponse servletResponse, javax.servlet.FilterChain filterChain)
      Will add the configured response headers to the response.
      void init​(javax.servlet.FilterConfig config)
      Parses the headers config.

      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

    • Constructor Detail

      • SecurityHeadersFilter

        public SecurityHeadersFilter()

    • Method Detail

      • init

        public void init​(javax.servlet.FilterConfig config)
          throws javax.servlet.ServletException
        Parses the headers config.
        Specified by:
        init in interface javax.servlet.Filter
        Parameters:
        config - The filter config
        Throws:
        javax.servlet.ServletException - if the headers filter config is invalid

      • doFilter

        public void doFilter​(javax.servlet.ServletRequest servletRequest,
                     javax.servlet.ServletResponse servletResponse,
                     javax.servlet.FilterChain filterChain)
              throws java.io.IOException,
                     javax.servlet.ServletException
        Will add the configured response headers to the response.
        Specified by:
        doFilter in interface javax.servlet.Filter
        Parameters:
        servletRequest - The servlet request
        servletResponse - The servlet response
        filterChain - The filter chain
        Throws:
        java.io.IOException
        javax.servlet.ServletException

      • destroy

        public void destroy()
        Specified by:
        destroy in interface javax.servlet.Filter