diff options
| author | Thomas Lenz <thomas.lenz@egiz.gv.at> | 2021-01-22 17:18:19 +0100 |
|---|---|---|
| committer | Thomas <> | 2022-03-03 16:31:56 +0100 |
| commit | 069b4226dc854817f956a58a59ce44049eda99fb (patch) | |
| tree | aad74f341f8f8bb318969c31dde44ba2649ea243 /eidas_modules/eidas_proxy-sevice/checks | |
| parent | bab20b30d6a2ed9c5a6e739260027d23b933dc00 (diff) | |
| download | National_eIDAS_Gateway-069b4226dc854817f956a58a59ce44049eda99fb.tar.gz National_eIDAS_Gateway-069b4226dc854817f956a58a59ce44049eda99fb.tar.bz2 National_eIDAS_Gateway-069b4226dc854817f956a58a59ce44049eda99fb.zip | |
add basic implementation of eIDAS-Node Proxy-Service request-controller
add raw version of eIDAS-Node response-generation action
Diffstat (limited to 'eidas_modules/eidas_proxy-sevice/checks')
| -rw-r--r-- | eidas_modules/eidas_proxy-sevice/checks/spotbugs-exclude.xml | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/eidas_modules/eidas_proxy-sevice/checks/spotbugs-exclude.xml b/eidas_modules/eidas_proxy-sevice/checks/spotbugs-exclude.xml new file mode 100644 index 00000000..53ca4d4d --- /dev/null +++ b/eidas_modules/eidas_proxy-sevice/checks/spotbugs-exclude.xml @@ -0,0 +1,12 @@ +<?xml version="1.0" encoding="UTF-8"?> +<FindBugsFilter> + <Match> + <!-- CSRF protection is implicit available by request token from eIDAS Node and tokens only be logged on trace level --> + <Class name="at.asitplus.eidas.specific.modules.msproxyservice.protocol.EidasProxyServiceController" /> + <Method name="receiveEidasAuthnRequest" /> + <OR> + <Bug pattern="SPRING_CSRF_UNRESTRICTED_REQUEST_MAPPING" /> + <Bug pattern="CRLF_INJECTION_LOGS" /> + </OR> + </Match> +</FindBugsFilter> |