NotificationsYou must be signed in to change notification settings
Fork122
Star236

Commitf71a541

committed

Add annotations for security headers

1 parent33e7854 commitf71a541Copy full SHA for f71a541

File tree

9 files changed

+17

-0

lines changed

stubbornjava-common/src/main/java/com/stubbornjava/common/undertow/handlers
- CustomHandlers.java
stubbornjava-undertow/src/main/java/com/stubbornjava/undertow/handlers
stubbornjava-webapp/src/main/java/com/stubbornjava/webapp
- StubbornJavaWebApp.java
- post
  - Tags.java

9 files changed

+17

-0

lines changed

`‎stubbornjava-common/src/main/java/com/stubbornjava/common/undertow/handlers/CustomHandlers.java‎`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -152,6 +152,7 @@ public static HttpHandler loadBalancerHttpToHttps(HttpHandler next) {`
`152`	`152`	`};`
`153`	`153`	`}`
`154`	`154`
	`155`	`+// {{start:securityHeaders}}`
`155`	`156`	`publicstaticHttpHandlersecurityHeaders(HttpHandlernext,ReferrerPolicypolicy) {`
`156`	`157`	`MiddlewareBuildersecurity =MiddlewareBuilder`
`157`	`158`	`.begin(XFrameOptionsHandlers::deny)`
`@@ -166,4 +167,5 @@ public static HttpHandler securityHeaders(HttpHandler next, ReferrerPolicy polic`
`166`	`167`	`}`
`167`	`168`	`returnsecurity.complete(next);`
`168`	`169`	`}`
	`170`	`+// {{end:securityHeaders}}`
`169`	`171`	`}`

`‎stubbornjava-undertow/src/main/java/com/stubbornjava/undertow/handlers/ContentSecurityPolicyHandler.java‎`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -8,6 +8,7 @@`
`8`	`8`	`importio.undertow.server.HttpHandler;`
`9`	`9`	`importio.undertow.server.handlers.SetHeaderHandler;`
`10`	`10`
	`11`	`+// {{start:handler}}`
`11`	`12`	`publicclassContentSecurityPolicyHandler {`
`12`	`13`	`privatestaticfinalStringCSP_HEADER ="Content-Security-Policy";`
`13`	`14`
`@@ -193,3 +194,4 @@ private String join(String... strings) {`
`193`	`194`	`}`
`194`	`195`	`}`
`195`	`196`	`}`
	`197`	`+// {{end:handler}}`

`‎stubbornjava-undertow/src/main/java/com/stubbornjava/undertow/handlers/ReferrerPolicyHandlers.java‎`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -3,6 +3,7 @@`
`3`	`3`	`importio.undertow.server.HttpHandler;`
`4`	`4`	`importio.undertow.server.handlers.SetHeaderHandler;`
`5`	`5`
	`6`	`+// {{start:handler}}`
`6`	`7`	`publicclassReferrerPolicyHandlers {`
`7`	`8`	`privatestaticfinalStringREFERRER_POLICY_STRING ="Referrer-Policy";`
`8`	`9`
`@@ -30,3 +31,4 @@ public static HttpHandler policy(HttpHandler next, ReferrerPolicy policy) {`
`30`	`31`	`returnnewSetHeaderHandler(next,REFERRER_POLICY_STRING,policy.getValue());`
`31`	`32`	`}`
`32`	`33`	`}`
	`34`	`+// {{end:handler}}`

`‎stubbornjava-undertow/src/main/java/com/stubbornjava/undertow/handlers/StrictTransportSecurityHandlers.java‎`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -4,6 +4,7 @@`
`4`	`4`	`importio.undertow.server.handlers.SetHeaderHandler;`
`5`	`5`	`importio.undertow.util.Headers;`
`6`	`6`
	`7`	`+// {{start:handler}}`
`7`	`8`	`publicclassStrictTransportSecurityHandlers {`
`8`	`9`
`9`	`10`	`publicstaticHttpHandlerhsts(HttpHandlernext,longmaxAge) {`
`@@ -14,3 +15,4 @@ public static HttpHandler hstsIncludeSubdomains(HttpHandler next, long maxAge) {`
`14`	`15`	`returnnewSetHeaderHandler(next,Headers.STRICT_TRANSPORT_SECURITY_STRING,"max-age=" +maxAge +"; includeSubDomains");`
`15`	`16`	`}`
`16`	`17`	`}`
	`18`	`+// {{end:handler}}`

`‎stubbornjava-undertow/src/main/java/com/stubbornjava/undertow/handlers/XContentTypeOptionsHandler.java‎`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -3,10 +3,12 @@`
`3`	`3`	`importio.undertow.server.HttpHandler;`
`4`	`4`	`importio.undertow.server.handlers.SetHeaderHandler;`
`5`	`5`
	`6`	`+// {{start:handler}}`
`6`	`7`	`publicclassXContentTypeOptionsHandler {`
`7`	`8`	`privatestaticfinalStringX_CONTENT_TYPE_OPTIONS_STRING ="X-Content-Type-Options";`
`8`	`9`
`9`	`10`	`publicstaticHttpHandlernosniff(HttpHandlernext) {`
`10`	`11`	`returnnewSetHeaderHandler(next,X_CONTENT_TYPE_OPTIONS_STRING,"nosniff");`
`11`	`12`	`}`
`12`	`13`	`}`
	`14`	`+// {{end:handler}}`

`‎stubbornjava-undertow/src/main/java/com/stubbornjava/undertow/handlers/XFrameOptionsHandlers.java‎`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -7,6 +7,7 @@`
`7`	`7`	`importio.undertow.server.handlers.SetHeaderHandler;`
`8`	`8`	`importio.undertow.util.HttpString;`
`9`	`9`
	`10`	`+// {{start:handler}}`
`10`	`11`	`publicclassXFrameOptionsHandlers {`
`11`	`12`	`privatestaticfinalStringX_FRAME_OPTIONS_STRING ="X-Frame-Options";`
`12`	`13`	`privatestaticfinalHttpStringX_FRAME_OPTIONS =newHttpString(X_FRAME_OPTIONS_STRING);`
`@@ -32,3 +33,4 @@ public static HttpHandler allowFromDynamicOrigin(HttpHandler next,`
`32`	`33`	`};`
`33`	`34`	`}`
`34`	`35`	`}`
	`36`	`+// {{end:handler}}`

`‎stubbornjava-undertow/src/main/java/com/stubbornjava/undertow/handlers/XXssProtectionHandlers.java‎`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -3,6 +3,7 @@`
`3`	`3`	`importio.undertow.server.HttpHandler;`
`4`	`4`	`importio.undertow.server.handlers.SetHeaderHandler;`
`5`	`5`
	`6`	`+// {{start:handler}}`
`6`	`7`	`publicclassXXssProtectionHandlers {`
`7`	`8`	`privatestaticfinalStringX_XSS_PROTECTION_STRING ="X-Xss-Protection";`
`8`	`9`
`@@ -18,3 +19,4 @@ public static HttpHandler enableAndBlock(HttpHandler next) {`
`18`	`19`	`returnnewSetHeaderHandler(next,X_XSS_PROTECTION_STRING,"1; mode=block");`
`19`	`20`	`}`
`20`	`21`	`}`
	`22`	`+// {{end:handler}}`

`‎stubbornjava-webapp/src/main/java/com/stubbornjava/webapp/StubbornJavaWebApp.java‎`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -33,6 +33,7 @@ private static HttpHandler exceptionHandler(HttpHandler next) {`
`33`	`33`	`.addExceptionHandler(Throwable.class,PageRoutes::error);`
`34`	`34`	`}`
`35`	`35`
	`36`	`+// {{start:csp}}`
`36`	`37`	`privatestaticHttpHandlercontentSecurityPolicy(HttpHandlerdelegate) {`
`37`	`38`	`returnnewContentSecurityPolicyHandler.Builder()`
`38`	`39`	`.defaultSrc(ContentSecurityPolicy.SELF)`
`@@ -44,6 +45,7 @@ private static HttpHandler contentSecurityPolicy(HttpHandler delegate) {`
`44`	`45`	`.styleSrc(ContentSecurityPolicy.SELF.getValue(),ContentSecurityPolicy.UNSAFE_INLINE.getValue())`
`45`	`46`	`.build(delegate);`
`46`	`47`	`}`
	`48`	`+// {{end:csp}}`
`47`	`49`
`48`	`50`	`privatestaticHttpHandlerwrapWithMiddleware(HttpHandlernext) {`
`49`	`51`	`returnMiddlewareBuilder.begin(PageRoutes::redirector)`

`‎stubbornjava-webapp/src/main/java/com/stubbornjava/webapp/post/Tags.java‎`

Lines changed: 1 addition & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -30,6 +30,7 @@ public class Tags {`
`30`	`30`	`publicstaticfinalTagElasticsearch =addTag(newTag(922794262770139008L,"Elasticsearch"));`
`31`	`31`	`publicstaticfinalTagAnsible =addTag(newTag(922794262770139008L,"Ansible"));`
`32`	`32`	`publicstaticfinalTagSupervisord =addTag(newTag(922794262770139008L,"Supervisord"));`
	`33`	`+publicstaticfinalTagSecurity =addTag(newTag(953801444178362856L,"Security"));`
`33`	`34`
`34`	`35`	`privatestaticTagaddTag(Tagtag) {`
`35`	`36`	`TAGS.add(tag);`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitf71a541

File tree

9 files changed

9 files changed

`‎stubbornjava-common/src/main/java/com/stubbornjava/common/undertow/handlers/CustomHandlers.java‎`

`‎stubbornjava-undertow/src/main/java/com/stubbornjava/undertow/handlers/ContentSecurityPolicyHandler.java‎`

`‎stubbornjava-undertow/src/main/java/com/stubbornjava/undertow/handlers/ReferrerPolicyHandlers.java‎`

`‎stubbornjava-undertow/src/main/java/com/stubbornjava/undertow/handlers/StrictTransportSecurityHandlers.java‎`

`‎stubbornjava-undertow/src/main/java/com/stubbornjava/undertow/handlers/XContentTypeOptionsHandler.java‎`

`‎stubbornjava-undertow/src/main/java/com/stubbornjava/undertow/handlers/XFrameOptionsHandlers.java‎`

`‎stubbornjava-undertow/src/main/java/com/stubbornjava/undertow/handlers/XXssProtectionHandlers.java‎`

`‎stubbornjava-webapp/src/main/java/com/stubbornjava/webapp/StubbornJavaWebApp.java‎`

`‎stubbornjava-webapp/src/main/java/com/stubbornjava/webapp/post/Tags.java‎`

0 commit comments