org.apache.spark.ui.HttpSecurityFilter

All Implemented Interfaces:: jakarta.servlet.Filter

public class HttpSecurityFilter extends Object implements jakarta.servlet.Filter

A servlet filter that implements HTTP security features. The following actions are taken for every request:

- perform access control of authenticated requests. - check request data for disallowed content (e.g. things that could be used to create XSS attacks). - set response headers to prevent certain kinds of attacks.

Request parameters are sanitized so that HTML content is escaped, and disallowed content is removed.

Constructor Summary

Constructors

Constructor

Description

HttpSecurityFilter(SparkConf conf, org.apache.spark.SecurityManager securityMgr)
Method Summary

Modifier and Type

Method

Description

void

doFilter(jakarta.servlet.ServletRequest req, jakarta.servlet.ServletResponse res, jakarta.servlet.FilterChain chain)

Methods inherited from class java.lang.Object
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface jakarta.servlet.Filter
destroy, init

Constructor Details
- HttpSecurityFilter
  
  public HttpSecurityFilter(SparkConf conf, org.apache.spark.SecurityManager securityMgr)
Method Details
- doFilter
  
  public void doFilter(jakarta.servlet.ServletRequest req, jakarta.servlet.ServletResponse res, jakarta.servlet.FilterChain chain)
  
  Specified by:
  
  doFilter in interface jakarta.servlet.Filter

Class HttpSecurityFilter

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Methods inherited from interface jakarta.servlet.Filter

Constructor Details

HttpSecurityFilter

Method Details

doFilter