Index
All Classes and Interfaces|All Packages|Constant Field Values|Serialized Form
A
- AbstractValidationPipeline - Class in de.cuioss.http.security.pipeline
-
Abstract base class for validation pipelines that provides common validation logic.
- AbstractValidationPipeline() - Constructor for class de.cuioss.http.security.pipeline.AbstractValidationPipeline
- addAllowedContentType(String) - Method in class de.cuioss.http.security.config.SecurityConfigurationBuilder
-
Adds a content type to the allowed list.
- addAllowedHeaderName(String) - Method in class de.cuioss.http.security.config.SecurityConfigurationBuilder
-
Adds a header name to the allowed list.
- addBlockedContentType(String) - Method in class de.cuioss.http.security.config.SecurityConfigurationBuilder
-
Adds a content type to the blocked list.
- addBlockedHeaderName(String) - Method in class de.cuioss.http.security.config.SecurityConfigurationBuilder
-
Adds a header name to the blocked list.
- After (Result Pattern) - Search tag in package de.cuioss.http.client.result
- Section
- allowControlCharacters() - Method in class de.cuioss.http.security.config.SecurityConfiguration
- allowControlCharacters(boolean) - Method in class de.cuioss.http.security.config.SecurityConfigurationBuilder
-
Sets whether control characters are allowed in content.
- allowDoubleEncoding() - Method in class de.cuioss.http.security.config.SecurityConfiguration
- allowDoubleEncoding(boolean) - Method in class de.cuioss.http.security.config.SecurityConfigurationBuilder
-
Sets whether double URL encoding is allowed.
- ALLOWED_TLS_VERSIONS - Static variable in record class de.cuioss.http.client.handler.SecureSSLContextProvider
-
Set of allowed (secure) TLS versions
- allowedContentTypes() - Method in class de.cuioss.http.security.config.SecurityConfiguration
- allowedContentTypes(Set<String>) - Method in class de.cuioss.http.security.config.SecurityConfigurationBuilder
-
Sets the complete list of allowed content types.
- allowedHeaderNames() - Method in class de.cuioss.http.security.config.SecurityConfiguration
- allowedHeaderNames(Set<String>) - Method in class de.cuioss.http.security.config.SecurityConfigurationBuilder
-
Sets the complete list of allowed header names.
- allowExtendedAscii() - Method in class de.cuioss.http.security.config.SecurityConfiguration
- allowExtendedAscii(boolean) - Method in class de.cuioss.http.security.config.SecurityConfigurationBuilder
-
Sets whether extended ASCII characters (128-255) are allowed in content.
- allowNullBytes() - Method in class de.cuioss.http.security.config.SecurityConfiguration
- allowNullBytes(boolean) - Method in class de.cuioss.http.security.config.SecurityConfigurationBuilder
-
Sets whether null bytes are allowed in content.
- allowPathTraversal() - Method in class de.cuioss.http.security.config.SecurityConfiguration
- allowPathTraversal(boolean) - Method in class de.cuioss.http.security.config.SecurityConfigurationBuilder
-
Sets whether path traversal patterns (../) are allowed.
- andThen(HttpSecurityValidator) - Method in interface de.cuioss.http.security.core.HttpSecurityValidator
-
Creates a composite validator that applies this validator followed by the given validator.
- asBuilder() - Method in class de.cuioss.http.client.handler.HttpHandler
-
Creates a pre-configured
HttpHandler.HttpHandlerBuilderwith the same configuration as this handler. - Async Composition (Recommended) - Search tag in interface de.cuioss.http.client.retry.RetryStrategy
- Section
- Async Design with Virtual Threads - Search tag in interface de.cuioss.http.client.retry.RetryStrategy
- Section
- ATTACK_SIGNATURE_DETECTED - Static variable in class de.cuioss.http.security.monitoring.URLSecurityLogMessages.WARN
-
Known attack signature detected and blocked.
- attemptNumber() - Method in record class de.cuioss.http.client.retry.RetryContext
-
Returns the value of the
attemptNumberrecord component. - attributes() - Method in record class de.cuioss.http.security.data.Cookie
-
Returns the value of the
attributesrecord component. - Available Pipelines - Search tag in package de.cuioss.http.security.pipeline
- Section
All Classes and Interfaces|All Packages|Constant Field Values|Serialized Form