Class ServerHttpSecurity.HeaderSpec.ContentSecurityPolicySpec
- java.lang.Object
-
- org.springframework.security.config.web.server.ServerHttpSecurity.HeaderSpec.ContentSecurityPolicySpec
-
- Enclosing class:
- ServerHttpSecurity.HeaderSpec
public final class ServerHttpSecurity.HeaderSpec.ContentSecurityPolicySpec extends java.lang.Object
ConfiguresContent-Security-Policy
response header.- Since:
- 5.1
- See Also:
ServerHttpSecurity.HeaderSpec.contentSecurityPolicy(String)
-
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description ServerHttpSecurity.HeaderSpec
and()
Allows method chaining to continue configuring theServerHttpSecurity
.ServerHttpSecurity.HeaderSpec
policyDirectives(java.lang.String policyDirectives)
Sets the security policy directive(s) to be used in the response header.ServerHttpSecurity.HeaderSpec
reportOnly(boolean reportOnly)
Whether to include theContent-Security-Policy-Report-Only
header in the response.
-
-
-
Method Detail
-
reportOnly
public ServerHttpSecurity.HeaderSpec reportOnly(boolean reportOnly)
Whether to include theContent-Security-Policy-Report-Only
header in the response. Otherwise, defaults to theContent-Security-Policy
header.- Parameters:
reportOnly
- whether to only report policy violations- Returns:
- the
ServerHttpSecurity.HeaderSpec
to continue configuring
-
policyDirectives
public ServerHttpSecurity.HeaderSpec policyDirectives(java.lang.String policyDirectives)
Sets the security policy directive(s) to be used in the response header.- Parameters:
policyDirectives
- the security policy directive(s)- Returns:
- the
ServerHttpSecurity.HeaderSpec
to continue configuring
-
and
public ServerHttpSecurity.HeaderSpec and()
Allows method chaining to continue configuring theServerHttpSecurity
.- Returns:
- the
ServerHttpSecurity.HeaderSpec
to continue configuring
-
-