package com.ots.framework.config;
|
import com.google.common.collect.Maps;
|
import com.ots.common.utils.StringUtils;
|
import com.ots.common.xss.XssFilter;
|
import org.springframework.beans.factory.annotation.Value;
|
import org.springframework.boot.web.servlet.FilterRegistrationBean;
|
import org.springframework.context.annotation.Bean;
|
import org.springframework.context.annotation.Configuration;
|
import javax.servlet.DispatcherType;
|
import java.util.Map;
|
|
@Configuration
|
public class FilterConfig {
|
@Value("${xss.enabled}")
|
private String enabled;
|
@Value("${xss.excludes}")
|
private String excludes;
|
@Value("${xss.urlPatterns}")
|
private String urlPatterns;
|
@SuppressWarnings({"rawtypes", "unchecked"})
|
@Bean
|
public FilterRegistrationBean xssFilterRegistration() {
|
FilterRegistrationBean registration = new FilterRegistrationBean();
|
registration.setDispatcherTypes(DispatcherType.REQUEST);
|
registration.setFilter(new XssFilter());
|
registration.addUrlPatterns(StringUtils.split(urlPatterns, ","));
|
registration.setName("xssFilter");
|
registration.setOrder(Integer.MAX_VALUE);
|
Map<String, String> initParameters = Maps.newHashMap();
|
initParameters.put("excludes", excludes);
|
initParameters.put("enabled", enabled);
|
registration.setInitParameters(initParameters);
|
return registration;
|
}
|
}
|
