Change in ovirt-engine[master]: engine: Add header to each response.

awels at redhat.com awels at redhat.com
Wed Apr 16 17:30:52 UTC 2014 

Alexander Wels has submitted this change and it was merged.

Change subject: engine: Add header to each response.
......................................................................


engine: Add header to each response.

- This patch adds headers to each response with the option
  of defining extra headers in the web.xml. There are 3
  headers added by default.
  - X-FRAME-OPTIONS: SAMEORIGIN (To stop click jacking)
  - X-CONTENT-TYPE-OPTIONS: NOSNIFF (To stop mime type attacks)
  - X-XSS-PROTECTION: 1; MODE=BLOCK (To enable IE XSS filter)

Change-Id: I4e9c26dddd0d0300d6b3d078ae763b78600f25d1
Signed-off-by: Alexander Wels <awels at redhat.com>
---
M backend/manager/modules/docs/src/main/webapp/WEB-INF/web.xml
M backend/manager/modules/root/src/main/webapp/WEB-INF/web.xml
A backend/manager/modules/utils/src/main/java/org/ovirt/engine/core/utils/servlet/HeaderFilter.java
A backend/manager/modules/utils/src/test/java/org/ovirt/engine/core/utils/servlet/HeaderFilterTest.java
M backend/manager/modules/welcome/src/main/webapp/WEB-INF/web.xml
M frontend/webadmin/modules/frontend/src/main/resources/META-INF/web-fragment.xml
M frontend/webadmin/modules/userportal-gwtp/src/main/webapp/WEB-INF/web.xml
M frontend/webadmin/modules/webadmin/src/main/webapp/WEB-INF/web.xml
8 files changed, 258 insertions(+), 0 deletions(-)

Approvals:
  Alexander Wels: Verified; Looks good to me, approved



-- 
To view, visit http://gerrit.ovirt.org/25937
To unsubscribe, visit http://gerrit.ovirt.org/settings

Gerrit-MessageType: merged
Gerrit-Change-Id: I4e9c26dddd0d0300d6b3d078ae763b78600f25d1
Gerrit-PatchSet: 3
Gerrit-Project: ovirt-engine
Gerrit-Branch: master
Gerrit-Owner: Alexander Wels <awels at redhat.com>
Gerrit-Reviewer: Alexander Wels <awels at redhat.com>
Gerrit-Reviewer: Alon Bar-Lev <alonbl at redhat.com>
Gerrit-Reviewer: Einav Cohen <ecohen at redhat.com>
Gerrit-Reviewer: Greg Sheremeta <gshereme at redhat.com>
Gerrit-Reviewer: Vojtech Szocs <vszocs at redhat.com>
Gerrit-Reviewer: automation at ovirt.org
Gerrit-Reviewer: oVirt Jenkins CI Server

More information about the Engine-commits mailing list