org.springframework.security.web.header.writers.frameoptions

Interface AllowFromStrategy

All Known Implementing Classes:

RegExpAllowFromStrategy, StaticAllowFromStrategy, WhiteListedAllowFromStrategy

public interface AllowFromStrategy

Strategy interfaces used by the FrameOptionsHeaderWriter to determine the actual value to use for the X-Frame-Options header when using the ALLOW-FROM directive.

Since:

3.2

Method Summary

Methods

Modifier and Type	Method and Description
String	getAllowFromValue(javax.servlet.http.HttpServletRequest request) Gets the value for ALLOW-FROM excluding the ALLOW-FROM.

Method Detail

getAllowFromValue

String getAllowFromValue(javax.servlet.http.HttpServletRequest request)

Gets the value for ALLOW-FROM excluding the ALLOW-FROM. For example, the result might be "https://example.com/".

Parameters:

request - the HttpServletRequest

Returns:

the value for ALLOW-FROM or null if no header should be added for this request.