XSSProtectionValve (Apache Tomcat Security Valves (tomcat-security-valves) 1.0.0 API)

java.lang.Object
- org.apache.catalina.util.LifecycleBase
- - org.apache.catalina.util.LifecycleMBeanBase
  - - org.apache.catalina.valves.ValveBase
    - - com.bluelotussoftware.tomcat.security.valves.XSSProtectionValve

All Implemented Interfaces:

MBeanRegistration, Contained, JmxEnabled, Lifecycle, Valve
```
public class XSSProtectionValve
extends ValveBase
```
This Valve is designed to add an X-XSS-Protection : 1; mode=block header to the Response object.

This is configured in the context.xml, or server.xml file using the following syntax:
```
 <valve>
   <class-name>com.bluelotussoftware.tomcat.security.valves.XSSProtectionValve</class-name>
 </valve>
 
```
Version:

1.0.0

Author:

John Yeary

- Nested Class Summary
  - Nested classes/interfaces inherited from interface org.apache.catalina.Lifecycle
    Lifecycle.SingleUse
- Field Summary
  - Fields inherited from class org.apache.catalina.valves.ValveBase
    asyncSupported, container, containerLog, next, sm
  - Fields inherited from class org.apache.catalina.util.LifecycleMBeanBase
    mserver
  - Fields inherited from interface org.apache.catalina.Lifecycle
    AFTER_DESTROY_EVENT, AFTER_INIT_EVENT, AFTER_START_EVENT, AFTER_STOP_EVENT, BEFORE_DESTROY_EVENT, BEFORE_INIT_EVENT, BEFORE_START_EVENT, BEFORE_STOP_EVENT, CONFIGURE_START_EVENT, CONFIGURE_STOP_EVENT, PERIODIC_EVENT, START_EVENT, STOP_EVENT
- Constructor Summary
  
  Constructors
  Constructor and Description
  
  XSSProtectionValve()
- Method Summary
  
  Methods
  Modifier and Type Method and Description
  
  void invoke(Request request, Response response)
  - Methods inherited from class org.apache.catalina.valves.ValveBase
    backgroundProcess, getContainer, getDomainInternal, getNext, getObjectNameKeyProperties, initInternal, isAsyncSupported, setAsyncSupported, setContainer, setNext, startInternal, stopInternal, toString
  - Methods inherited from class org.apache.catalina.util.LifecycleMBeanBase
    destroyInternal, getDomain, getObjectName, postDeregister, postRegister, preDeregister, preRegister, register, setDomain, unregister
  - Methods inherited from class org.apache.catalina.util.LifecycleBase
    addLifecycleListener, destroy, findLifecycleListeners, fireLifecycleEvent, getState, getStateName, init, removeLifecycleListener, setState, setState, start, stop
  - Methods inherited from class java.lang.Object
    clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Constructors
Constructor and Description
`XSSProtectionValve()`

Methods
Modifier and Type	Method and Description
`void`	`invoke(Request request, Response response)`

Constructor Detail
- XSSProtectionValve
```
public XSSProtectionValve()
```

Method Detail

invoke

public void invoke(Request request,
          Response response)
            throws IOException,
                   ServletException

Adds X-XSS-Protection : 1; mode=block header to the Response object.

Throws:: IOException; ServletException

Class XSSProtectionValve

Nested Class Summary

Nested classes/interfaces inherited from interface org.apache.catalina.Lifecycle

Field Summary

Fields inherited from class org.apache.catalina.valves.ValveBase

Fields inherited from class org.apache.catalina.util.LifecycleMBeanBase

Fields inherited from interface org.apache.catalina.Lifecycle

Constructor Summary

Method Summary

Methods inherited from class org.apache.catalina.valves.ValveBase

Methods inherited from class org.apache.catalina.util.LifecycleMBeanBase

Methods inherited from class org.apache.catalina.util.LifecycleBase

Methods inherited from class java.lang.Object

Constructor Detail

XSSProtectionValve

Method Detail

invoke