Package io.hawt.web.filters

Class HttpHeaderFilter

java.lang.Object

io.hawt.web.filters.HttpHeaderFilter

All Implemented Interfaces:

jakarta.servlet.Filter

Direct Known Subclasses:

CacheHeadersFilter, ContentSecurityPolicyFilter, CORSFilter, PublicKeyPinningFilter, ReferrerPolicyFilter, StrictTransportSecurityFilter, XContentTypeOptionsFilter, XFrameOptionsFilter, XXSSProtectionFilter

public abstract class HttpHeaderFilter
extends Object
implements jakarta.servlet.Filter

Abstract servlet filter for applying HTTP headers to responses.

Field Summary

Fields

Modifier and Type	Field	Description
static final String	ALLOW_X_FRAME_SAME_ORIGIN
static final String	HAWTIO_ALLOW_X_FRAME_SAME_ORIGIN

Constructor Summary

Constructors

Constructor	Description
HttpHeaderFilter()

Method Summary

Modifier and Type	Method	Description
protected abstract void	addHeaders(jakarta.servlet.http.HttpServletRequest request, jakarta.servlet.http.HttpServletResponse response)
void	doFilter(jakarta.servlet.ServletRequest request, jakarta.servlet.ServletResponse response, jakarta.servlet.FilterChain chain)
protected String	getConfigParameter(String key)
void	init(jakarta.servlet.FilterConfig filterConfig)
protected boolean	isXFrameSameOriginAllowed()
protected ForbiddenReason	verifyHeaders(jakarta.servlet.http.HttpServletRequest request)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface jakarta.servlet.Filter

destroy

Field Details

ALLOW_X_FRAME_SAME_ORIGIN

public static final String ALLOW_X_FRAME_SAME_ORIGIN

See Also:

• Constant Field Values

HAWTIO_ALLOW_X_FRAME_SAME_ORIGIN

public static final String HAWTIO_ALLOW_X_FRAME_SAME_ORIGIN

See Also:

• Constant Field Values

Constructor Details

HttpHeaderFilter

public HttpHeaderFilter()

Method Details

init

public void init(jakarta.servlet.FilterConfig filterConfig)
          throws jakarta.servlet.ServletException

Specified by:

init in interface jakarta.servlet.Filter

Throws:

jakarta.servlet.ServletException

doFilter

public void doFilter(jakarta.servlet.ServletRequest request,
 jakarta.servlet.ServletResponse response,
 jakarta.servlet.FilterChain chain)
              throws IOException,
jakarta.servlet.ServletException

Specified by:

doFilter in interface jakarta.servlet.Filter

Throws:

IOException

jakarta.servlet.ServletException

verifyHeaders

protected ForbiddenReason verifyHeaders(jakarta.servlet.http.HttpServletRequest request)

addHeaders

protected abstract void addHeaders(jakarta.servlet.http.HttpServletRequest request,
 jakarta.servlet.http.HttpServletResponse response)
                            throws IOException,
jakarta.servlet.ServletException

Throws:

IOException

jakarta.servlet.ServletException

getConfigParameter

protected String getConfigParameter(String key)

isXFrameSameOriginAllowed

protected boolean isXFrameSameOriginAllowed()