summaryrefslogtreecommitdiffstats
path: root/jdisc-security-filters/src/main
Commit message (Collapse)AuthorAgeFilesLines
* Revert "Bjorncs/update zpe"Harald Musum2020-01-241-3/+2
|
* Return the matched role in checkAccessAllowed methodsBjørn Christian Seime2020-01-241-2/+3
| | | | | | Rewrite AuthorizationResult to specify result type as a inner Type enum. Add matched role to AuthorizationResult. Propagate matched role to request object in AthenzAuthorizationFilter.
* Remove NToken support from AthenzPrincipalFilterBjørn Christian Seime2019-09-112-41/+5
|
* Move BlockingRequestFilter to jdisc-security-filtersBjørn Christian Seime2019-05-091-0/+18
|
* Move LocalhostFilter and NoopFilter to jdisc-security-filtersBjørn Christian Seime2019-05-092-0/+53
|
* Add test for SignatureFilterJon Marius Venstad2019-05-021-1/+1
|
* Let AthenzPrincipalFilter inherit JSRFB directlyJon Marius Venstad2019-05-021-10/+4
|
* Use roles for authorizationMartin Polden2019-03-221-5/+0
|
* Revert "Merge pull request #8370 from ↵Jon Bratseth2019-02-041-1/+1
| | | | | | | vespa-engine/revert-8308-bratseth/disallow-dash-rebased" This reverts commit 43cf4fd1ec196cb0543af73db8e3bd1f6774f0a8, reversing changes made to 14172aa5cd890445980202909d1277429e4c5a3a.
* Revert "Bratseth/disallow dash rebased"Jon Bratseth2019-02-041-1/+1
|
* Nonfunctional changes onlyJon Bratseth2019-01-311-1/+1
|
* Revert "Bratseth/disallow dash "Jon Bratseth2019-01-161-1/+1
|
* Nonfunctional changes onlyJon Bratseth2019-01-101-1/+1
|
* Allow okta headersMorten Tokle2018-10-221-4/+1
|
* Add passthrough mode to AthenzPrincipalFilterBjørn Christian Seime2018-10-042-5/+28
| | | | | | - No http response when passthrough mode is enable - Introduce attributes for error code and message - Introduce attribute for AthenzPrincipal instance
* Move AthenzPrincipalFilter to jdisc-security-filtersBjørn Christian Seime2018-07-262-0/+103
|
* Rename 'AccessCheckResult' -> 'AuthorizationResult'Bjørn Christian Seime2018-06-211-5/+5
|
* Disable client caching of error responsesBjørn Christian Seime2018-06-201-0/+1
|
* Correct unintentional method nameBjørn Christian Seime2018-06-203-3/+3
|
* Add new Athenz security filter based on ZPEBjørn Christian Seime2018-06-206-0/+239
| | | | | - Allow flexible configuration of filter using a resource mapper - Add helper class to extract role and identity from role certificates
* Add X-Content-Type-Options headerMorten Tokle2018-06-131-0/+1
|
* Add jdisc filter that adds recommened security-related response headersBjørn Christian Seime2018-06-052-0/+29
|
* Make CorsRequestFilterBase extend JsonSecurityRequestFilterBaseBjørn Christian Seime2018-04-241-43/+8
|
* Add base class for security filters rendering errors as jsonBjørn Christian Seime2018-04-242-0/+94
|
* Change package name and class name of Cors filtersBjørn Christian Seime2018-04-096-21/+18
| | | | | * Change package name to 'com.yahoo.jdisc.filter.security.cors' * Remove 'Security' from names of Cors class names
* Add new module jdisc-security-filtersBjørn Christian Seime2018-04-096-0/+248
* Add new base class for security filters supporting CORS headers * Add CORS response filter and preflight request filter