Package org.springframework.cloud.gateway.filter.factory

Class SecureHeadersProperties

java.lang.Object

org.springframework.cloud.gateway.filter.factory.SecureHeadersProperties

@ConfigurationProperties("spring.cloud.gateway.filter.secure-headers")
public class SecureHeadersProperties
extends Object

Author:

Spencer Gibb, Thirunavukkarasu Ravichandran

Field Summary

Fields

Modifier and Type	Field	Description
static final String	CONTENT_SECURITY_POLICY_HEADER_DEFAULT	Content-Security Policy header default.
static final String	REFERRER_POLICY_HEADER_DEFAULT	Referrer Policy header default.
static final String	STRICT_TRANSPORT_SECURITY_HEADER_DEFAULT	Strict transport security header default.
static final String	X_CONTENT_TYPE_OPTIONS_HEADER_DEFAULT	Content-Type Options header default.
static final String	X_DOWNLOAD_OPTIONS_HEADER_DEFAULT	Download Options header default.
static final String	X_FRAME_OPTIONS_HEADER_DEFAULT	Frame Options header default.
static final String	X_PERMITTED_CROSS_DOMAIN_POLICIES_HEADER_DEFAULT	Permitted Cross-Domain Policies header default.
static final String	X_XSS_PROTECTION_HEADER_DEFAULT	Xss-Protection header default.

Constructor Summary

Constructors

Constructor	Description
SecureHeadersProperties()

Method Summary

Modifier and Type	Method	Description
String	getContentSecurityPolicy()
String	getContentTypeOptions()
List<String>	getDisable()
String	getDownloadOptions()
String	getFrameOptions()
String	getPermittedCrossDomainPolicies()
String	getReferrerPolicy()
String	getStrictTransportSecurity()
String	getXssProtectionHeader()
void	setContentSecurityPolicy(String contentSecurityPolicy)
void	setContentTypeOptions(String contentTypeOptions)
void	setDisable(List<String> disable)
void	setDownloadOptions(String downloadOptions)
void	setFrameOptions(String frameOptions)
void	setPermittedCrossDomainPolicies(String permittedCrossDomainPolicies)
void	setReferrerPolicy(String referrerPolicy)
void	setStrictTransportSecurity(String strictTransportSecurity)
void	setXssProtectionHeader(String xssProtectionHeader)
String	toString()

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Field Details

X_XSS_PROTECTION_HEADER_DEFAULT

public static final String X_XSS_PROTECTION_HEADER_DEFAULT

Xss-Protection header default.

See Also:

• Constant Field Values

STRICT_TRANSPORT_SECURITY_HEADER_DEFAULT

public static final String STRICT_TRANSPORT_SECURITY_HEADER_DEFAULT

Strict transport security header default.

See Also:

• Constant Field Values

X_FRAME_OPTIONS_HEADER_DEFAULT

public static final String X_FRAME_OPTIONS_HEADER_DEFAULT

Frame Options header default.

See Also:

• Constant Field Values

X_CONTENT_TYPE_OPTIONS_HEADER_DEFAULT

public static final String X_CONTENT_TYPE_OPTIONS_HEADER_DEFAULT

Content-Type Options header default.

See Also:

• Constant Field Values

REFERRER_POLICY_HEADER_DEFAULT

public static final String REFERRER_POLICY_HEADER_DEFAULT

Referrer Policy header default.

See Also:

• Constant Field Values

CONTENT_SECURITY_POLICY_HEADER_DEFAULT

public static final String CONTENT_SECURITY_POLICY_HEADER_DEFAULT

Content-Security Policy header default.

See Also:

• Constant Field Values

X_DOWNLOAD_OPTIONS_HEADER_DEFAULT

public static final String X_DOWNLOAD_OPTIONS_HEADER_DEFAULT

Download Options header default.

See Also:

• Constant Field Values

X_PERMITTED_CROSS_DOMAIN_POLICIES_HEADER_DEFAULT

public static final String X_PERMITTED_CROSS_DOMAIN_POLICIES_HEADER_DEFAULT

Permitted Cross-Domain Policies header default.

See Also:

• Constant Field Values

Constructor Details

SecureHeadersProperties

public SecureHeadersProperties()

Method Details

getXssProtectionHeader

public String getXssProtectionHeader()

setXssProtectionHeader

public void setXssProtectionHeader(String xssProtectionHeader)

getStrictTransportSecurity

public String getStrictTransportSecurity()

setStrictTransportSecurity

public void setStrictTransportSecurity(String strictTransportSecurity)

getFrameOptions

public String getFrameOptions()

setFrameOptions

public void setFrameOptions(String frameOptions)

getContentTypeOptions

public String getContentTypeOptions()

setContentTypeOptions

public void setContentTypeOptions(String contentTypeOptions)

getReferrerPolicy

public String getReferrerPolicy()

setReferrerPolicy

public void setReferrerPolicy(String referrerPolicy)

getContentSecurityPolicy

public String getContentSecurityPolicy()

setContentSecurityPolicy

public void setContentSecurityPolicy(String contentSecurityPolicy)

getDownloadOptions

public String getDownloadOptions()

setDownloadOptions

public void setDownloadOptions(String downloadOptions)

getPermittedCrossDomainPolicies

public String getPermittedCrossDomainPolicies()

setPermittedCrossDomainPolicies

public void setPermittedCrossDomainPolicies(String permittedCrossDomainPolicies)

getDisable

public List<String> getDisable()

setDisable

public void setDisable(List<String> disable)

toString

public String toString()

Overrides:

toString in class Object