StrictHttpFirewall (Spring Security 4.2.4.RELEASE API)

java.lang.Object
- org.springframework.security.web.firewall.StrictHttpFirewall

All Implemented Interfaces:

HttpFirewall
```
public class StrictHttpFirewall
extends java.lang.Object
implements HttpFirewall
```
A strict implementation of HttpFirewall that rejects any suspicious requests with a RequestRejectedException.

Since:

5.0.1

Constructor Summary

Constructors
Constructor and Description

StrictHttpFirewall()

Constructors
Constructor and Description
`StrictHttpFirewall()`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`FirewalledRequest`	`getFirewalledRequest(javax.servlet.http.HttpServletRequest request)` Provides the request object which will be passed through the filter chain.
`javax.servlet.http.HttpServletResponse`	`getFirewalledResponse(javax.servlet.http.HttpServletResponse response)` Provides the response which will be passed through the filter chain.
`void`	`setAllowBackSlash(boolean allowBackSlash)`
`void`	`setAllowSemicolon(boolean allowSemicolon)`
`void`	`setAllowUrlEncodedPercent(boolean allowUrlEncodedPercent)`
`void`	`setAllowUrlEncodedPeriod(boolean allowUrlEncodedPeriod)`
`void`	`setAllowUrlEncodedSlash(boolean allowUrlEncodedSlash)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - StrictHttpFirewall
```
public StrictHttpFirewall()
```
- Method Detail
  - setAllowSemicolon
```
public void setAllowSemicolon(boolean allowSemicolon)
```
    Parameters:
    
    allowSemicolon -
  - setAllowUrlEncodedSlash
```
public void setAllowUrlEncodedSlash(boolean allowUrlEncodedSlash)
```
  - setAllowUrlEncodedPeriod
```
public void setAllowUrlEncodedPeriod(boolean allowUrlEncodedPeriod)
```
  - setAllowBackSlash
```
public void setAllowBackSlash(boolean allowBackSlash)
```
  - setAllowUrlEncodedPercent
```
public void setAllowUrlEncodedPercent(boolean allowUrlEncodedPercent)
```
  - getFirewalledRequest
```
public FirewalledRequest getFirewalledRequest(javax.servlet.http.HttpServletRequest request)
                                       throws RequestRejectedException
```
    Description copied from interface: HttpFirewall
    
    Provides the request object which will be passed through the filter chain.
    
    Specified by:
    
    getFirewalledRequest in interface HttpFirewall
    
    Throws:
    
    RequestRejectedException - if the request should be rejected immediately
  - getFirewalledResponse
```
public javax.servlet.http.HttpServletResponse getFirewalledResponse(javax.servlet.http.HttpServletResponse response)
```
    Description copied from interface: HttpFirewall
    
    Provides the response which will be passed through the filter chain.
    
    Specified by:
    
    getFirewalledResponse in interface HttpFirewall
    
    Parameters:
    
    response - the original response
    
    Returns:
    
    either the original response or a replacement/wrapper.

Class StrictHttpFirewall

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

StrictHttpFirewall

Method Detail

setAllowSemicolon

setAllowUrlEncodedSlash

setAllowUrlEncodedPeriod

setAllowBackSlash

setAllowUrlEncodedPercent

getFirewalledRequest

getFirewalledResponse