Package org.springframework.security.web.firewall

Interface Summary

Interface	Description
HttpFirewall	Interface which can be used to reject potentially dangerous requests and/or wrap them to control their behaviour.
RequestRejectedHandler	Used by FilterChainProxy to handle an RequestRejectedException.

Class Summary

Class	Description
DefaultHttpFirewall	User's should consider using StrictHttpFirewall because rather than trying to sanitize a malicious URL it rejects the malicious URL providing better security guarantees.
DefaultRequestRejectedHandler	Default implementation of RequestRejectedHandler that simply rethrows the exception.
FirewalledRequest	Request wrapper which is returned by the HttpFirewall interface.
HttpStatusRequestRejectedHandler	A simple implementation of RequestRejectedHandler that sends an error with configurable status code.
StrictHttpFirewall	A strict implementation of HttpFirewall that rejects any suspicious requests with a RequestRejectedException.

Exception Summary

Exception	Description
RequestRejectedException