public class ESAPIWebApplicationFirewallFilter extends Object implements javax.servlet.Filter
Constructor and Description |
---|
ESAPIWebApplicationFirewallFilter() |
Modifier and Type | Method and Description |
---|---|
void |
destroy() |
void |
doFilter(javax.servlet.ServletRequest servletRequest,
javax.servlet.ServletResponse servletResponse,
javax.servlet.FilterChain chain)
This is the where the main interception and rule-checking logic of the
WAF resides.
|
AppGuardianConfiguration |
getConfiguration() |
void |
init(javax.servlet.FilterConfig fc)
This function is invoked at application startup and when the
configuration file polling period has elapsed and a change in the
configuration file has been detected.
|
void |
setConfiguration(String policyFilePath,
String webRootDir)
This function is used in testing to dynamically alter the configuration.
|
public void setConfiguration(String policyFilePath, String webRootDir) throws FileNotFoundException
policyFilePath
- The path to the policy filewebRootDir
- The root directory of the web application.FileNotFoundException
- if the policy file cannot be locatedpublic AppGuardianConfiguration getConfiguration()
public void init(javax.servlet.FilterConfig fc) throws javax.servlet.ServletException
doFilter()
method.init
in interface javax.servlet.Filter
javax.servlet.ServletException
public void doFilter(javax.servlet.ServletRequest servletRequest, javax.servlet.ServletResponse servletResponse, javax.servlet.FilterChain chain) throws IOException, javax.servlet.ServletException
doFilter
in interface javax.servlet.Filter
IOException
javax.servlet.ServletException
public void destroy()
destroy
in interface javax.servlet.Filter
Copyright © 2022 The Open Web Application Security Project (OWASP). All rights reserved.