hudson.security.csrf

Class CrumbExclusion

java.lang.Object

hudson.security.csrf.CrumbExclusion

All Implemented Interfaces:

ExtensionPoint

Direct Known Subclasses:

ApiCrumbExclusion, CliCrumbExclusion

public abstract class CrumbExclusion
extends Object
implements ExtensionPoint

Allows plugins to define exceptions to the CSRF protection filter.

Since:

1.446

Author:

Kohsuke Kawaguchi

Nested Class Summary

Nested classes/interfaces inherited from interface hudson.ExtensionPoint

ExtensionPoint.LegacyInstancesAreScopedToHudson

Constructor Summary

Constructors

Constructor and Description
CrumbExclusion()

Method Summary

Modifier and Type	Method and Description
static ExtensionList<CrumbExclusion>	all()
abstract boolean	process(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response, javax.servlet.FilterChain chain) This method is called for every incoming POST request.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

CrumbExclusion

public CrumbExclusion()

Method Detail

process

public abstract boolean process(javax.servlet.http.HttpServletRequest request,
                                javax.servlet.http.HttpServletResponse response,
                                javax.servlet.FilterChain chain)
                         throws IOException,
                                javax.servlet.ServletException

This method is called for every incoming POST request.

Returns:

true to indicate that the callee had processed this request (for example by reporting an error, or by executing the rest of the chain.)

Throws:

IOException

javax.servlet.ServletException

all

public static ExtensionList<CrumbExclusion> all()