Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Prevent browser API caching | Morten Tokle | 2022-10-25 | 2 | -2/+1 |
| | |||||
* | Prevent browsers caching api responses | Morten Tokle | 2022-10-24 | 1 | -0/+1 |
| | |||||
* | Allow 'Vespa-Csrf-Token' header | Bjørn Christian Seime | 2022-09-26 | 1 | -1/+2 |
| | |||||
* | Remove old config definition that has been replaced by ... | gjoranv | 2022-08-31 | 1 | -20/+0 |
| | | | | | jdisc.http.filter.security.rule.config.rule-based-filter.def in the 'configdefinitions' module. | ||||
* | compare oranges with oranges | Andreas Eriksen | 2022-08-17 | 2 | -1/+9 |
| | |||||
* | Add Referrer-Policy header | Morten Tokle | 2022-08-01 | 1 | -0/+1 |
| | |||||
* | Convert jdisc-security-filters to junit5 | Bjørn Christian Seime | 2022-07-27 | 9 | -73/+62 |
| | |||||
* | Move rule-based-filter config to configdefinitions module/bundle | gjoranv | 2022-07-27 | 5 | -11/+13 |
| | | | | | | | .. to remove import-package from config-model to jdisc-security-filters. - Keep the old config def for a while in case it's needed by hosted Vespa config models. | ||||
* | Simplify type definition for subject alternative names | Bjørn Christian Seime | 2022-07-20 | 1 | -2/+2 |
| | |||||
* | Add x-frame-options | Morten Tokle | 2022-06-28 | 1 | -0/+1 |
| | |||||
* | Fix javadoc | Valerij Fredriksen | 2022-06-27 | 1 | -2/+2 |
| | |||||
* | Create CSP response filter | Valerij Fredriksen | 2022-06-27 | 2 | -0/+37 |
| | |||||
* | Remove unnecessary deps to security-utils, now included in container-dev | gjoranv | 2022-06-16 | 1 | -6/+0 |
| | |||||
* | Set project version to 8-SNAPSHOT | gjoranv | 2022-06-08 | 1 | -2/+2 |
| | |||||
* | Add explicit security-utils to get bouncycastle. | gjoranv | 2022-06-08 | 1 | -0/+6 |
| | |||||
* | install_jar CMake function | Håkon Hallingstad | 2022-05-20 | 1 | -1/+1 |
| | |||||
* | Use '@Inject' from 'annotations' in multiple bundles | Bjørn Christian Seime | 2022-05-06 | 6 | -6/+6 |
| | |||||
* | Move User from controller-api to jdisc-security-filters | Bjørn Christian Seime | 2022-04-27 | 2 | -0/+103 |
| | |||||
* | Add comment about why there is no path segment validation in rule filter | jonmv | 2022-04-11 | 1 | -0/+2 |
| | |||||
* | Only create Path if there are any patterns to match against | jonmv | 2022-04-11 | 1 | -2/+1 |
| | |||||
* | Avoid segment validation in rule based filter | jonmv | 2022-04-11 | 2 | -2/+2 |
| | |||||
* | GC deprecated junit assertThat. | Henning Baldersheim | 2021-12-21 | 3 | -29/+23 |
| | |||||
* | Make DiscFilterResponse concrete and remove package-private sub-class | Bjørn Christian Seime | 2021-12-03 | 1 | -24/+2 |
| | | | | | Make DiscFilterResponse opereate directly on a jdisc-core Response instance. Reduce use of jdisc-core types from its public API. | ||||
* | Reapply "Remove Servlet integration from container-core [run-systemtest]"" | Bjørn Christian Seime | 2021-12-03 | 1 | -2/+2 |
| | |||||
* | Revert "Remove Servlet integration from container-core [run-systemtest]" | Jon Marius Venstad | 2021-12-03 | 1 | -2/+2 |
| | |||||
* | Remove Servlet integration from container-core | Bjørn Christian Seime | 2021-12-02 | 1 | -2/+2 |
| | |||||
* | Support custom JSON + error code as string | Bjørn Christian Seime | 2021-11-16 | 1 | -18/+41 |
| | |||||
* | Update 2020 Oath copyrights. | gjoranv | 2021-10-27 | 2 | -2/+2 |
| | |||||
* | Update 2019 Oath copyrights. | gjoranv | 2021-10-27 | 1 | -1/+1 |
| | |||||
* | Update Verizon Media copyright notices. | gjoranv | 2021-10-07 | 4 | -4/+4 |
| | |||||
* | Update 2018 copyright notices. | gjoranv | 2021-10-07 | 27 | -27/+27 |
| | |||||
* | Update 2017 copyright notices. | gjoranv | 2021-10-07 | 1 | -1/+1 |
| | |||||
* | Revert "Add commons-codec dependency" | Harald Musum | 2021-07-05 | 1 | -8/+0 |
| | |||||
* | Add commons-codec dependency | Valerij Fredriksen | 2021-07-05 | 1 | -0/+8 |
| | |||||
* | Remove null dimension values | Morten Tokle | 2021-06-11 | 1 | -0/+2 |
| | |||||
* | Add request and acl mapping values as metric dimensions | Morten Tokle | 2021-06-11 | 3 | -18/+76 |
| | |||||
* | Return request origin when wildcard is allowed | Valerij Fredriksen | 2021-05-11 | 2 | -15/+8 |
| | |||||
* | Remove corse filter base class that is no longer relevant | Bjørn Christian Seime | 2021-05-07 | 2 | -101/+0 |
| | |||||
* | Allow wildcard in allowedUrls for CorsPreflightRequestFilter | Valerij Fredriksen | 2021-05-06 | 2 | -2/+13 |
| | |||||
* | Custom acl mapping | Morten Tokle | 2021-04-15 | 2 | -1/+9 |
| | |||||
* | Test that access token is ignored when client has role certificate | Bjørn Christian Seime | 2021-03-02 | 1 | -0/+14 |
| | |||||
* | Ignore access token header if client has Athenz role certificate | Bjørn Christian Seime | 2021-03-02 | 1 | -8/+36 |
| | |||||
* | Test dryrun | Bjørn Christian Seime | 2021-02-23 | 1 | -0/+15 |
| | |||||
* | Add configurable response headers for blocked requests | Bjørn Christian Seime | 2021-02-23 | 3 | -7/+72 |
| | |||||
* | Merge pull request #16556 from vespa-engine/mortent/block-feed-global-config | Morten Tokle | 2021-02-18 | 1 | -6/+0 |
|\ | | | | | Config for blocking feed to global endpoints | ||||
| * | Config for blocking feed to global endpoints | Morten Tokle | 2021-02-17 | 1 | -6/+0 |
| | | |||||
* | | Add rule based request filter | Bjørn Christian Seime | 2021-02-17 | 3 | -1/+308 |
|/ | |||||
* | Add default rule | Bjørn Christian Seime | 2021-02-16 | 1 | -2/+5 |
| | |||||
* | Add config definition for rule based security filter | Bjørn Christian Seime | 2021-02-16 | 2 | -0/+21 |
| | |||||
* | Athenz jdisc filter: support proxied access token from trusted peer | Bjørn Christian Seime | 2021-02-11 | 3 | -16/+117 |
| |