aboutsummaryrefslogtreecommitdiff
path: root/eidas_modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml
diff options
context:
space:
mode:
authorThomas <>2021-09-02 09:01:27 +0200
committerThomas <>2021-09-02 09:01:27 +0200
commit3d758efdb2d1f455222773d1b5d2cba91a32f8ad (patch)
treeeead4117719b5fc5ebd824e610ca46f14b8322df /eidas_modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml
parentaf4097de42e0208d19fdcee7bbfc1406b64c17c7 (diff)
parent34094edfbf91cf445dbeae12b1b63cbfef543244 (diff)
downloadNational_eIDAS_Gateway-3d758efdb2d1f455222773d1b5d2cba91a32f8ad.tar.gz
National_eIDAS_Gateway-3d758efdb2d1f455222773d1b5d2cba91a32f8ad.tar.bz2
National_eIDAS_Gateway-3d758efdb2d1f455222773d1b5d2cba91a32f8ad.zip
Merge branch 'feature/matching_rebased' into feature/matching_base
Diffstat (limited to 'eidas_modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml')
-rw-r--r--eidas_modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml15
1 files changed, 14 insertions, 1 deletions
diff --git a/eidas_modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml b/eidas_modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml
index 375f73f4..15d62521 100644
--- a/eidas_modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml
@@ -2,6 +2,13 @@
<FindBugsFilter>
<Match>
<!-- Do not check code generated by Apache CXF framework -->
+ <Or>
+ <Class name="~szrservices.SZRException"/>
+ <Package name="~at[.]gv[.]bmi[.]namespace[.]zmr_su.*?" />
+ </Or>
+ </Match>
+ <Match>
+ <!-- Do not check code generated by Apache CXF framework -->
<Class name="~szrservices.SZRException"/>
</Match>
<Match>
@@ -12,6 +19,12 @@
</Match>
<Match>
<!-- CSFR protection is implemented by pendingRequestId that is an one-time token -->
+ <Class name="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.controller.IdAustriaClientAuthSignalController" />
+ <Method name="performAuthentication" />
+ <Bug pattern="SPRING_CSRF_UNRESTRICTED_REQUEST_MAPPING" />
+ </Match>
+ <Match>
+ <!-- CSFR protection is implemented by pendingRequestId that is an one-time token -->
<Class name="at.asitplus.eidas.specific.modules.auth.eidas.v2.EidasSignalServlet" />
<Method name="restoreEidasAuthProcess" />
<Bug pattern="SPRING_CSRF_UNRESTRICTED_REQUEST_MAPPING" />
@@ -25,7 +38,7 @@
<Match>
<!-- Redirect URL is only loaded from configuration -->
<Class name="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAuthnRequestTask" />
- <Method name="execute" />
+ <Method name="sendRedirect" />
<Bug pattern="UNVALIDATED_REDIRECT" />
</Match>
</FindBugsFilter>