Package com.atlassian.bamboo.filter
package com.atlassian.bamboo.filter
-
ClassDescriptionLogs JIRA username and request URL via log4j.This policy class checks for a given
AccessType
and information if anonymous access is allowed if a principal represented by anAuthority
has sufficient access rights represented byGrantedAuthority
s.Wraps theCompressingFilter
so that it can be switched on and off from the Bamboo UI.Sets encoding, content type, and wraps response withFixedHtmlEncodingResponseWrapper
Applied only to plugins servlet to avoid problems with artifacts and static resources.A servlet filter that adds security headers to HTTP responses This filter is responsible for adding the following headers to secure from certain types of attacks: + HTTP Strict Transport Security (HSTS) - Man-in-the-middle attacks (MITM) + X-XSS-Protection - Cross-site scripting (XSS) + X-Frame-Options - Clickjacking attacks + X-Content-Type-Options - MIME-sniffing vulnerabilities + Content-Security-Policy - Various attack mitigation + Referrer-Policy - Control referrer information + Permissions-Policy - Control feature usageThis is a filter to check Atlassian security annotations (annotations from com.atlassian.annotations.security) applied for core (non plugins) servlets.Servlet filter applied to the Struts actions.org.springframework.web.filter.RequestContextFilter (and any OncePerRequestFilter) will set a request attribute with an instance of WebAsyncManager (by calling org.springframework.web.context.request.async.WebAsyncUtils#getAsyncManager(javax.servlet.ServletRequest)) If a plugin calls org.springframework.web.context.request.async.WebAsyncUtils#getAsyncManager(javax.servlet.ServletRequest) it will retrieve that instance of WebAsyncManager, but will cause a ClassCastException, as plugins have different Spring classes than core.Sets a Sitemesh decorator attribute in the request to override any other decorator mappings.Allows you to ignore newrelic metrics collection http://newrelic.com/docs/java/blocking-instrumentation-in-javaFilter to add meaningful names to NewRelic transactions https://newrelic.com/docs/java/java-agent-component-based-web-transaction-namingPage<T>Pager<T>This Tuckey URLRewriteRule
will normalise a URL and then make sure that it does not attempt to use directory traversal to access the WEB-INF/META-INF directory.Entry point toSecureAccessFilterChain
.All filter define in here will be check for 3AF forLicensedOnly
by defaultSimple service which manage filter path.Wrapper FilterConfig for SecureAccessFilterCheck and extend user session last access time attribute.It ensures the secondary nodes don't get any traffic except the status endpoint.