org.springframework.security.web.header.writers.frameoptions
Interface AllowFromStrategy
- All Known Implementing Classes:
- RegExpAllowFromStrategy, StaticAllowFromStrategy, WhiteListedAllowFromStrategy
public interface AllowFromStrategy
Strategy interfaces used by the FrameOptionsHeaderWriter
to determine the actual value to use for the
X-Frame-Options header when using the ALLOW-FROM directive.
- Since:
- 3.2
Method Summary |
String |
getAllowFromValue(javax.servlet.http.HttpServletRequest request)
Gets the value for ALLOW-FROM excluding the ALLOW-FROM. |
getAllowFromValue
String getAllowFromValue(javax.servlet.http.HttpServletRequest request)
- Gets the value for ALLOW-FROM excluding the ALLOW-FROM. For example, the
result might be "https://example.com/".
- Parameters:
request
- the HttpServletRequest
- Returns:
- the value for ALLOW-FROM or null if no header should be added for this request.