Constructor Detail

• HttpHeaderSecurityFilter

  public HttpHeaderSecurityFilter()

Method Detail

• init

  public void init(FilterConfig filterConfig)
            throws ServletException

  Description copied from interface: javax.servlet.Filter
  Called by the web container to indicate to a filter that it is being placed into service. The servlet container calls the init method exactly once after instantiating the filter. The init method must complete successfully before the filter is asked to do any filtering work.
  
  The web container cannot place the filter into service if the init method either
  1.Throws a ServletException
  2.Does not return within a time period defined by the web container

  Specified by:

  init in interface Filter

  Overrides:

  init in class FilterBase

  Throws:

  ServletException

• doFilter

  public void doFilter(ServletRequest request,
              ServletResponse response,
              FilterChain chain)
                throws java.io.IOException,
                       ServletException

  Description copied from interface: javax.servlet.Filter
  The doFilter method of the Filter is called by the container each time a request/response pair is passed through the chain due to a client request for a resource at the end of the chain. The FilterChain passed in to this method allows the Filter to pass on the request and response to the next entity in the chain.

  A typical implementation of this method would follow the following pattern:-
  1. Examine the request
  2. Optionally wrap the request object with a custom implementation to filter content or headers for input filtering
  3. Optionally wrap the response object with a custom implementation to filter content or headers for output filtering
  4. a) Either invoke the next entity in the chain using the FilterChain object (chain.doFilter()),
  4. b) or not pass on the request/response pair to the next entity in the filter chain to block the request processing
  5. Directly set headers on the response after invocation of the next entity in the filter chain.

  Throws:

  java.io.IOException

  ServletException

• getLogger

  protected Log getLogger()

  Specified by:

  getLogger in class FilterBase

• isConfigProblemFatal

  protected boolean isConfigProblemFatal()

  Description copied from class: FilterBase
  Determines if an exception when calling a setter or an unknown configuration attribute triggers the failure of the this filter which in turn will prevent the web application from starting.

  Overrides:

  isConfigProblemFatal in class FilterBase

  Returns:

  true if a problem should trigger the failure of this filter, else false

• isHstsEnabled

  public boolean isHstsEnabled()

• setHstsEnabled

  public void setHstsEnabled(boolean hstsEnabled)

• getHstsMaxAgeSeconds

  public int getHstsMaxAgeSeconds()

• setHstsMaxAgeSeconds

  public void setHstsMaxAgeSeconds(int hstsMaxAgeSeconds)

• isHstsIncludeSubDomains

  public boolean isHstsIncludeSubDomains()

• setHstsIncludeSubDomains

  public void setHstsIncludeSubDomains(boolean hstsIncludeSubDomains)

• isAntiClickJackingEnabled

  public boolean isAntiClickJackingEnabled()

• setAntiClickJackingEnabled

  public void setAntiClickJackingEnabled(boolean antiClickJackingEnabled)

• getAntiClickJackingOption

  public java.lang.String getAntiClickJackingOption()

• setAntiClickJackingOption

  public void setAntiClickJackingOption(java.lang.String antiClickJackingOption)

• getAntiClickJackingUri

  public java.lang.String getAntiClickJackingUri()

• isBlockContentTypeSniffingEnabled

  public boolean isBlockContentTypeSniffingEnabled()

• setBlockContentTypeSniffingEnabled

  public void setBlockContentTypeSniffingEnabled(boolean blockContentTypeSniffingEnabled)

• setAntiClickJackingUri

  public void setAntiClickJackingUri(java.lang.String antiClickJackingUri)