|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object org.springframework.security.web.header.writers.frameoptions.WhiteListedAllowFromStrategy
public final class WhiteListedAllowFromStrategy
Implementation which checks the supplied origin against a list of allowed origins.
Field Summary | |
---|---|
protected org.apache.commons.logging.Log |
log
Logger for use by subclasses |
Constructor Summary | |
---|---|
WhiteListedAllowFromStrategy(Collection<String> allowed)
Creates a new instance |
Method Summary | |
---|---|
protected boolean |
allowed(String allowFromOrigin)
Method to be implemented by base classes, used to determine if the supplied origin is allowed. |
String |
getAllowFromValue(javax.servlet.http.HttpServletRequest request)
Gets the value for ALLOW-FROM excluding the ALLOW-FROM. |
void |
setAllowFromParameterName(String allowFromParameterName)
Sets the HTTP parameter used to retrieve the value for the origin that is allowed from. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
---|
protected final org.apache.commons.logging.Log log
Constructor Detail |
---|
public WhiteListedAllowFromStrategy(Collection<String> allowed)
allowed
- the origins that are allowed.Method Detail |
---|
protected boolean allowed(String allowFromOrigin)
allowFromOrigin
- the supplied origin
true
if the supplied origin is allowed.public String getAllowFromValue(javax.servlet.http.HttpServletRequest request)
AllowFromStrategy
getAllowFromValue
in interface AllowFromStrategy
request
- the HttpServletRequest
public void setAllowFromParameterName(String allowFromParameterName)
allowFromParameterName
- the name of the HTTP parameter to
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |