Package org.sdase.commons.server.security

Class SecurityBundle.Builder

java.lang.Object

org.sdase.commons.server.security.SecurityBundle.Builder

Enclosing class:

SecurityBundle<T extends io.dropwizard.core.Configuration>

public static class SecurityBundle.Builder
extends Object

Constructor Summary

Constructors

Constructor	Description
Builder()

Method Summary

Modifier and Type	Method	Description
SecurityBundle<io.dropwizard.core.Configuration>	build()
SecurityBundle.Builder	disableBufferLimitValidation()	Switches from suppressing the application start to a warn logging for violated buffer limits.
SecurityBundle.Builder	withFrontendSupport()	If a service is configured with frontend support, the Content-Security-Policy header allows the same domain as source for scripts, images, styles and fonts.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

Builder

public Builder()

Method Details

disableBufferLimitValidation

public SecurityBundle.Builder disableBufferLimitValidation()

Switches from suppressing the application start to a warn logging for violated buffer limits. In rare cases an application might need to increase the default limits and therefore has to disable strict validation. This option should be used with care.

Returns:

this builder instance

withFrontendSupport

public SecurityBundle.Builder withFrontendSupport()

If a service is configured with frontend support, the Content-Security-Policy header allows the same domain as source for scripts, images, styles and fonts. Otherwise, only API endpoints can be served and Content-Security-Policy does not allow any sources.

Returns:

this builder instance

See Also:

• CSP header

build

public SecurityBundle<io.dropwizard.core.Configuration> build()