Package io.undertow.servlet.handlers.security

Class ServletConfidentialityConstraintHandler

java.lang.Object

io.undertow.security.handlers.AbstractConfidentialityHandler

io.undertow.security.handlers.SinglePortConfidentialityHandler

io.undertow.servlet.handlers.security.ServletConfidentialityConstraintHandler

All Implemented Interfaces:

HttpHandler

public class ServletConfidentialityConstraintHandler
extends SinglePortConfidentialityHandler

Servlet specific extension to SinglePortConfidentialityHandler

Author:

Darran Lofthouse

Constructor Summary

Constructors

Constructor	Description
ServletConfidentialityConstraintHandler(ConfidentialPortManager portManager, HttpHandler next)

Method Summary

Modifier and Type	Method	Description
protected boolean	confidentialityRequired(HttpServerExchange exchange)
protected URI	getRedirectURI(HttpServerExchange exchange)
void	handleRequest(HttpServerExchange exchange)
protected boolean	isConfidential(HttpServerExchange exchange)	Use the HttpServerExchange supplied to check if this request is already 'sufficiently' confidential.

Methods inherited from class io.undertow.security.handlers.SinglePortConfidentialityHandler

getRedirectURI

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

ServletConfidentialityConstraintHandler

public ServletConfidentialityConstraintHandler(ConfidentialPortManager portManager,
 HttpHandler next)

Method Details

handleRequest

public void handleRequest(HttpServerExchange exchange)
                   throws Exception

Specified by:

handleRequest in interface HttpHandler

Overrides:

handleRequest in class AbstractConfidentialityHandler

Throws:

Exception

confidentialityRequired

protected boolean confidentialityRequired(HttpServerExchange exchange)

Overrides:

confidentialityRequired in class AbstractConfidentialityHandler

getRedirectURI

protected URI getRedirectURI(HttpServerExchange exchange)
                      throws URISyntaxException

Overrides:

getRedirectURI in class SinglePortConfidentialityHandler

Throws:

URISyntaxException

isConfidential

protected boolean isConfidential(HttpServerExchange exchange)

Use the HttpServerExchange supplied to check if this request is already 'sufficiently' confidential. Here we say 'sufficiently' as sub-classes can override this and maybe even go so far as querying the actual SSLSession.

Overrides:

isConfidential in class AbstractConfidentialityHandler

Parameters:

exchange - - The HttpServerExchange for the request being processed.

Returns:

true if the request is 'sufficiently' confidential, false otherwise.