public class DefaultSecurityFilter extends Object implements javax.servlet.Filter
Filter that uses the DefaultSecurityContext and uses default app settings.
http://code.google.com/p/owasp-esapi-java/source/browse/trunk/src/main/java/org/owasp/esapi/filters/ESAPIFilter.java?r=927
(apply only whats relevant)| Constructor and Description |
|---|
DefaultSecurityFilter() |
| Modifier and Type | Method and Description |
|---|---|
void |
destroy() |
void |
doFilter(javax.servlet.ServletRequest request,
javax.servlet.ServletResponse response,
javax.servlet.FilterChain chain) |
void |
init(javax.servlet.FilterConfig config) |
protected boolean |
XSSPass(javax.servlet.http.HttpServletRequest httpRequest,
javax.servlet.http.HttpServletResponse httpResponse)
Check for Reflective XSS.
|
public void destroy()
destroy in interface javax.servlet.Filterpublic void init(javax.servlet.FilterConfig config)
throws javax.servlet.ServletException
init in interface javax.servlet.Filterjavax.servlet.ServletExceptionpublic void doFilter(javax.servlet.ServletRequest request,
javax.servlet.ServletResponse response,
javax.servlet.FilterChain chain)
throws IOException,
javax.servlet.ServletException
doFilter in interface javax.servlet.FilterIOExceptionjavax.servlet.ServletExceptionprotected boolean XSSPass(javax.servlet.http.HttpServletRequest httpRequest,
javax.servlet.http.HttpServletResponse httpResponse)
throws IOException,
OperationNotSupportedException
httpRequest - httpResponse - IOExceptionOperationNotSupportedExceptionCopyright © 2018. All rights reserved.