Package org.forgerock.openig.filter
Class CsrfFilterHeaplet
java.lang.Object
org.forgerock.openig.heap.GenericHeaplet
org.forgerock.openig.filter.CsrfFilterHeaplet
- All Implemented Interfaces:
Heaplet
Creates and initializes a
CsrfFilter supporting the injection and validation of an anti-CSRF token
in the request header.
The CsrfFilterHeaplet has the following configuration:
{
"type": "CsrfFilter",
"config": {
"cookieName" : string [REQUIRED - the session cookie name. ]
"headerName" : string [OPTIONAL - the header used to receive the anti-CSRF token.
Defaults to "X-CSRF-Token". ]
"excludeSafeMethods" : boolean [OPTIONAL - Whether or not exclude GET, HEAD and OPTION methods.
Defaults to "true". ]
"failureHandler" : Handler [OPTIONAL - A handler to call when CSRF check fails.
Defaults to an empty 403 response. ]
}
}
- See Also:
-
Field Summary
-
Constructor Summary
Constructors -
Method Summary
Methods inherited from class org.forgerock.openig.heap.GenericHeaplet
create, destroy, endpointRegistry, evaluatedWithHeapProperties, expression, getConfig, getHeap, getType, initialBindings, meterRegistryHolder, start
-
Constructor Details
-
CsrfFilterHeaplet
public CsrfFilterHeaplet()
-
-
Method Details
-
create
Description copied from class:GenericHeapletCalled to request the heaplet create an object. Called byHeaplet.create(Name, JsonValue, Heap)after initializing the protected field members. Implementations should parse configuration but not acquire resources, start threads, or log any initialization messages. These tasks should be performed by theGenericHeaplet.start()method.- Specified by:
createin classGenericHeaplet- Returns:
- The created object.
- Throws:
HeapException- if an exception occurred during creation of the heap object or any of its dependencies.
-