A B C D F H I O R S W
All Classes All Packages
All Classes All Packages
All Classes All Packages
A
- applySecureConfiguration() - Method in class org.sdase.commons.server.security.validation.BufferLimitsAdvice
- applySecureConfiguration() - Method in class org.sdase.commons.server.security.validation.CustomErrorHandlerSecurityAdvice
- applySecureConfiguration() - Method in class org.sdase.commons.server.security.validation.HttpConnectorSecurityAdvice
- applySecureConfiguration() - Method in class org.sdase.commons.server.security.validation.ServerFactorySecurityAdvice
B
- BufferLimitsAdvice - Class in org.sdase.commons.server.security.validation
-
Checks that secure limits of used
HttpConnectorFactoryinstances are used to avoid the risk of buffer overflow attacks. - BufferLimitsAdvice(ServerFactory, boolean) - Constructor for class org.sdase.commons.server.security.validation.BufferLimitsAdvice
- build() - Method in class org.sdase.commons.server.security.SecurityBundle.Builder
- builder() - Static method in class org.sdase.commons.server.security.SecurityBundle
- Builder() - Constructor for class org.sdase.commons.server.security.SecurityBundle.Builder
C
- CustomErrorHandlerSecurityAdvice - Class in org.sdase.commons.server.security.validation
-
Checks that custom error mappers are registered by the JacksonConfigurationBundle.
- CustomErrorHandlerSecurityAdvice(ServerFactory, Bootstrap<?>) - Constructor for class org.sdase.commons.server.security.validation.CustomErrorHandlerSecurityAdvice
D
- disableBufferLimitValidation() - Method in class org.sdase.commons.server.security.SecurityBundle.Builder
-
Switches from suppressing the application start to a warn logging for violated buffer limits.
F
- filter(ContainerRequestContext, ContainerResponseContext) - Method in class org.sdase.commons.server.security.filter.WebSecurityApiOnlyHeaderFilter
- filter(ContainerRequestContext, ContainerResponseContext) - Method in class org.sdase.commons.server.security.filter.WebSecurityFrontendSupportHeaderFilter
H
- handle(String, Request, HttpServletRequest, HttpServletResponse) - Method in class org.sdase.commons.server.security.handler.ObscuringErrorHandler
- HttpConnectorSecurityAdvice - Class in org.sdase.commons.server.security.validation
-
Checks that secure defaults of used
HttpConnectorFactoryinstances are not modified and overwrites insecure defaults. - HttpConnectorSecurityAdvice(ServerFactory) - Constructor for class org.sdase.commons.server.security.validation.HttpConnectorSecurityAdvice
I
- initialize(Bootstrap<?>) - Method in class org.sdase.commons.server.security.SecurityBundle
- InsecureConfigurationException - Exception in org.sdase.commons.server.security.exception
-
Exception to be thrown if the configuration looks suspicious.
- InsecureConfigurationException(String) - Constructor for exception org.sdase.commons.server.security.exception.InsecureConfigurationException
O
- ObscuringErrorHandler - Class in org.sdase.commons.server.security.handler
-
Error handle that replaces default error pages of Jetty with custom
ApiError. - ObscuringErrorHandler(ObjectMapper) - Constructor for class org.sdase.commons.server.security.handler.ObscuringErrorHandler
- org.sdase.commons.server.security - package org.sdase.commons.server.security
- org.sdase.commons.server.security.exception - package org.sdase.commons.server.security.exception
- org.sdase.commons.server.security.filter - package org.sdase.commons.server.security.filter
- org.sdase.commons.server.security.handler - package org.sdase.commons.server.security.handler
- org.sdase.commons.server.security.validation - package org.sdase.commons.server.security.validation
R
- run(T, Environment) - Method in class org.sdase.commons.server.security.SecurityBundle
S
- SecurityBundle<T extends io.dropwizard.Configuration> - Class in org.sdase.commons.server.security
-
A
ConfiguredBundlethat enforces common rules for secure REST applications. - SecurityBundle.Builder - Class in org.sdase.commons.server.security
- ServerFactorySecurityAdvice - Class in org.sdase.commons.server.security.validation
-
Checks that secure defaults of used
AbstractServerFactoryinstances are not modified and overwrites insecure defaults. - ServerFactorySecurityAdvice(ServerFactory) - Constructor for class org.sdase.commons.server.security.validation.ServerFactorySecurityAdvice
W
- WebSecurityApiOnlyHeaderFilter - Class in org.sdase.commons.server.security.filter
-
This filter adds headers to the response that enhance the security of web applications.
- WebSecurityApiOnlyHeaderFilter() - Constructor for class org.sdase.commons.server.security.filter.WebSecurityApiOnlyHeaderFilter
- WebSecurityFrontendSupportHeaderFilter - Class in org.sdase.commons.server.security.filter
-
This filter adds headers to the response that enhance the security of web applications.
- WebSecurityFrontendSupportHeaderFilter() - Constructor for class org.sdase.commons.server.security.filter.WebSecurityFrontendSupportHeaderFilter
- withFrontendSupport() - Method in class org.sdase.commons.server.security.SecurityBundle.Builder
-
If a service is configured with frontend support, the
Content-Security-Policyheader allows the same domain as source for scripts, images, styles and fonts.
All Classes All Packages