public class HttpSecurityFilter
extends Object
implements javax.servlet.Filter
- perform access control of authenticated requests. - check request data for disallowed content (e.g. things that could be used to create XSS attacks). - set response headers to prevent certain kinds of attacks.
Request parameters are sanitized so that HTML content is escaped, and disallowed content is removed.
Constructor and Description |
---|
HttpSecurityFilter(SparkConf conf,
org.apache.spark.SecurityManager securityMgr) |
Modifier and Type | Method and Description |
---|---|
void |
destroy() |
void |
doFilter(javax.servlet.ServletRequest req,
javax.servlet.ServletResponse res,
javax.servlet.FilterChain chain) |
void |
init(javax.servlet.FilterConfig config) |
public HttpSecurityFilter(SparkConf conf, org.apache.spark.SecurityManager securityMgr)
public void destroy()
destroy
in interface javax.servlet.Filter
public void doFilter(javax.servlet.ServletRequest req, javax.servlet.ServletResponse res, javax.servlet.FilterChain chain)
doFilter
in interface javax.servlet.Filter
public void init(javax.servlet.FilterConfig config)
init
in interface javax.servlet.Filter