Difference between revisions of "Tomcat hardening"
Jump to navigation
Jump to search
old>Admin (Created page with " === CRSF filter === In the APPLICATION web.xml (webapps\<app>\WEB_INF\web.xml) add the following sections <filter> <filter-name>CsrfFilter</filter-name> <filter-c...") |
old>Admin |
||
| Line 1: | Line 1: | ||
=== Secure headers === | |||
Revision as of 10:13, 7 February 2018
Secure headers
CRSF filter
In the APPLICATION web.xml (webapps\<app>\WEB_INF\web.xml) add the following sections
<filter>
<filter-name>CsrfFilter</filter-name>
<filter-class>org.apache.catalina.filters.CsrfPreventionFilter</filter-class>
<init-param>
<param-name>entryPoints</param-name>
<param-value>/login, /login.do</param-value>
</init-param>
</filter>
<filter-mapping> <filter-name>CsrfFilter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping>