Package org.eclnt.jsfserver.util
Interface SecurityFilter.IExtension
- Enclosing class:
- SecurityFilter
public static interface SecurityFilter.IExtension
Extension that you might add to this filter. Before the security check
is executed this extension is called. If the extension returns "false" then
the security check is NOT executed.
The extension is either registered in system.xml configuration file...
<securityfilter extensionclassname="workplace.SecurityFilterExtension"/>
...or it is directly set through by calling method
The extension is either registered in system.xml configuration file...
<securityfilter extensionclassname="workplace.SecurityFilterExtension"/>
...or it is directly set through by calling method
SecurityFilter#setSecurityFilterExtention(IExtension).-
Method Summary
Modifier and TypeMethodDescriptionbooleancheckIfToExecuteCheck(javax.servlet.ServletRequest request) Certain constellations may be excluded from the security check.
-
Method Details
-
checkIfToExecuteCheck
boolean checkIfToExecuteCheck(javax.servlet.ServletRequest request) Certain constellations may be excluded from the security check. Of course: if not executing the check then you need to provide some other mechanism to build trust that the sessionid is not a hijacked one.
-