Package org.springframework.cloud.gateway.filter.factory

Class SecureHeadersProperties

  • @ConfigurationProperties("spring.cloud.gateway.filter.secure-headers")
public class SecureHeadersProperties
extends Object
    Author:
    Spencer Gibb, Thirunavukkarasu Ravichandran

    • Field Detail

      • X_XSS_PROTECTION_HEADER_DEFAULT

        public static final String X_XSS_PROTECTION_HEADER_DEFAULT
        Xss-Protection header default.
        See Also:
        Constant Field Values

      • STRICT_TRANSPORT_SECURITY_HEADER_DEFAULT

        public static final String STRICT_TRANSPORT_SECURITY_HEADER_DEFAULT
        Strict transport security header default.
        See Also:
        Constant Field Values

      • X_FRAME_OPTIONS_HEADER_DEFAULT

        public static final String X_FRAME_OPTIONS_HEADER_DEFAULT
        Frame Options header default.
        See Also:
        Constant Field Values

      • X_CONTENT_TYPE_OPTIONS_HEADER_DEFAULT

        public static final String X_CONTENT_TYPE_OPTIONS_HEADER_DEFAULT
        Content-Type Options header default.
        See Also:
        Constant Field Values

      • REFERRER_POLICY_HEADER_DEFAULT

        public static final String REFERRER_POLICY_HEADER_DEFAULT
        Referrer Policy header default.
        See Also:
        Constant Field Values

      • CONTENT_SECURITY_POLICY_HEADER_DEFAULT

        public static final String CONTENT_SECURITY_POLICY_HEADER_DEFAULT
        Content-Security Policy header default.
        See Also:
        Constant Field Values

      • X_DOWNLOAD_OPTIONS_HEADER_DEFAULT

        public static final String X_DOWNLOAD_OPTIONS_HEADER_DEFAULT
        Download Options header default.
        See Also:
        Constant Field Values

      • X_PERMITTED_CROSS_DOMAIN_POLICIES_HEADER_DEFAULT

        public static final String X_PERMITTED_CROSS_DOMAIN_POLICIES_HEADER_DEFAULT
        Permitted Cross-Domain Policies header default.
        See Also:
        Constant Field Values

    • Constructor Detail

      • SecureHeadersProperties

        public SecureHeadersProperties()

    • Method Detail

      • getXssProtectionHeader

        public String getXssProtectionHeader()

      • setXssProtectionHeader

        public void setXssProtectionHeader​(String xssProtectionHeader)

      • getStrictTransportSecurity

        public String getStrictTransportSecurity()

      • setStrictTransportSecurity

        public void setStrictTransportSecurity​(String strictTransportSecurity)

      • getFrameOptions

        public String getFrameOptions()

      • setFrameOptions

        public void setFrameOptions​(String frameOptions)

      • getContentTypeOptions

        public String getContentTypeOptions()

      • setContentTypeOptions

        public void setContentTypeOptions​(String contentTypeOptions)

      • getReferrerPolicy

        public String getReferrerPolicy()

      • setReferrerPolicy

        public void setReferrerPolicy​(String referrerPolicy)

      • getContentSecurityPolicy

        public String getContentSecurityPolicy()

      • setContentSecurityPolicy

        public void setContentSecurityPolicy​(String contentSecurityPolicy)

      • getDownloadOptions

        public String getDownloadOptions()

      • setDownloadOptions

        public void setDownloadOptions​(String downloadOptions)

      • getPermittedCrossDomainPolicies

        public String getPermittedCrossDomainPolicies()

      • setPermittedCrossDomainPolicies

        public void setPermittedCrossDomainPolicies​(String permittedCrossDomainPolicies)

      • setDisable

        public void setDisable​(List<String> disable)