Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

This provides Valve implementations to add response security headers to container managed security on Apache Tomcat

License

NotificationsYou must be signed in to change notification settings

bluelotussoftware/tomcat-security-valves

Repository files navigation

This providesValve implementations to add response security headers to container managed security on Apache Tomcat. The valves may be implemented by adding them to theconf/context.xml file for all deployements on Apache Tomcat, or to the projectcontext.xml as shown below:

    <!-- These can be replaced with the org.apache.catalina.filters.HttpHeaderSecurityFilter. -->    <!-- However it does not secure container-managed-security. You must use a Valve to handle that case. -->    <Valve className="com.bluelotussoftware.tomcat.security.valves.ReferrerPolicyValve" />    <Valve className="com.bluelotussoftware.tomcat.security.valves.StrictTransportSecurityValve" />    <Valve className="com.bluelotussoftware.tomcat.security.valves.XContentTypeOptionsValve" />    <Valve className="com.bluelotussoftware.tomcat.security.valves.XFrameOptionsValve" />    <Valve className="com.bluelotussoftware.tomcat.security.valves.XSSProtectionValve" />    <Valve className="com.bluelotussoftware.tomcat.security.valves.JSecurityCheckNoCacheValve" />

The binaries are deployed to Maven Central at the following coordinates:

<dependency>  <groupId>com.bluelotussoftware</groupId>  <artifactId>tomcat-security-valves</artifactId>  <version>2.2.5</version></dependency>

NOTE: The file should be installed in the Apache Tomcat/lib/ directory to be available for all applications. This applies even if you are using an individualcontext.xml per project to enable it.

Javadocs

About

This provides Valve implementations to add response security headers to container managed security on Apache Tomcat

Topics

Resources

License

Stars

Watchers

Forks

Packages

No packages published

Contributors3

  •  
  •  
  •  

Languages

[8]ページ先頭
©2009-2025 Movatter.jp