org.sdase.commons.server.security.validation.CustomErrorHandlerSecurityAdvice

public class CustomErrorHandlerSecurityAdvice extends Object

Checks that custom error mappers are registered by the JacksonConfigurationBundle. The check is indirectly performed by checking that the bundle itself is registered. This class checks for the risks identified in the security guide as:

"Risiko: Erkennung von vertraulichen Komponenten ... Entfernen von applikations-bezogenen Fehlermeldungen"
"Risiko: Erkennung von vertraulichen Komponenten ... Zentrales Abfangen aller Exceptions"

Constructor Summary

Constructors

Constructor

Description

CustomErrorHandlerSecurityAdvice(io.dropwizard.core.server.ServerFactory serverFactory, io.dropwizard.core.setup.Bootstrap<?> bootstrap)
Method Summary

Modifier and Type

Method

Description

void

applySecureConfiguration()

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- CustomErrorHandlerSecurityAdvice
  
  public CustomErrorHandlerSecurityAdvice(io.dropwizard.core.server.ServerFactory serverFactory, io.dropwizard.core.setup.Bootstrap<?> bootstrap)
Method Details
- applySecureConfiguration
  
  public void applySecureConfiguration()

Class CustomErrorHandlerSecurityAdvice

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Details

CustomErrorHandlerSecurityAdvice

Method Details

applySecureConfiguration