diff options
| author | Thomas Lenz <thomas.lenz@egiz.gv.at> | 2020-12-09 18:20:56 +0100 |
|---|---|---|
| committer | Thomas Lenz <thomas.lenz@egiz.gv.at> | 2020-12-09 18:20:56 +0100 |
| commit | c4f117e74b8ade8b420f0443955ec6b94f88cee4 (patch) | |
| tree | 5d8aabd71d2df048bf2a1897a97a7cf13061b29c /eaaf_modules/eaaf_module_pvp2_idp/checks | |
| parent | 9e7812cb52bfe64e72855eecbd28a756718ce1e1 (diff) | |
| download | EAAF-Components-c4f117e74b8ade8b420f0443955ec6b94f88cee4.tar.gz EAAF-Components-c4f117e74b8ade8b420f0443955ec6b94f88cee4.tar.bz2 EAAF-Components-c4f117e74b8ade8b420f0443955ec6b94f88cee4.zip | |
add findSecBugs extension into spotbugs plug-in
Diffstat (limited to 'eaaf_modules/eaaf_module_pvp2_idp/checks')
| -rw-r--r-- | eaaf_modules/eaaf_module_pvp2_idp/checks/spotbugs-exclude.xml | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/eaaf_modules/eaaf_module_pvp2_idp/checks/spotbugs-exclude.xml b/eaaf_modules/eaaf_module_pvp2_idp/checks/spotbugs-exclude.xml new file mode 100644 index 00000000..855f39bd --- /dev/null +++ b/eaaf_modules/eaaf_module_pvp2_idp/checks/spotbugs-exclude.xml @@ -0,0 +1,14 @@ +<?xml version="1.0" encoding="UTF-8"?> +<FindBugsFilter> + <Match> + <!-- allow SHA-1, because transient SubjectNameIDs should have the same pattern as bPKs --> + <Class name="at.gv.egiz.eaaf.modules.pvp2.idp.impl.builder.Pvp2AssertionBuilder"/> + <Method name="buildAssertion" /> + <Bug pattern="WEAK_MESSAGE_DIGEST_SHA1" /> + </Match> + <Match> + <!-- allow logging of SAML2 request parameters --> + <Class name="at.gv.egiz.eaaf.modules.pvp2.idp.impl.AbstractPvp2XProtocol"/> + <Bug pattern="CRLF_INJECTION_LOGS" /> + </Match> +</FindBugsFilter> |