aboutsummaryrefslogtreecommitdiff
path: root/eidas_modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml
diff options
context:
space:
mode:
Diffstat (limited to 'eidas_modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml')
-rw-r--r--eidas_modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml44
1 files changed, 0 insertions, 44 deletions
diff --git a/eidas_modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml b/eidas_modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml
deleted file mode 100644
index d961b4d6..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/checks/spotbugs-exclude.xml
+++ /dev/null
@@ -1,44 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<FindBugsFilter>
- <Match>
- <!-- Do not check code generated by Apache CXF framework -->
- <Class name="~szrservices.*"/>
- <Class name="~at.gv.e_government.reference.namespace.persondata.*" />
- <Class name="~org.w3._2000._09.xmldsig.*" />
- </Match>
- <Match>
- <!-- Logging of SAML2 responses in case of errors or for debugging is allowed -->
- <Class name="at.asitplus.eidas.specific.modules.auth.eidas.v2.EidasSignalServlet" />
- <Method name="getPendingRequestId" />
- <Bug pattern="CRLF_INJECTION_LOGS" />
- </Match>
- <Match>
- <!-- CSFR protection is implemented by pendingRequestId that is an one-time token -->
- <Class name="at.asitplus.eidas.specific.modules.auth.eidas.v2.EidasSignalServlet" />
- <Method name="restoreEidasAuthProcess" />
- <Bug pattern="SPRING_CSRF_UNRESTRICTED_REQUEST_MAPPING" />
- </Match>
- <Match>
- <!-- File path is only loaded from configuration -->
- <Class name="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry" />
- <Method name="initialize" />
- <Bug pattern="PATH_TRAVERSAL_IN" />
- </Match>
- <Match>
- <!-- Redirect URL is only loaded from configuration -->
- <Class name="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAuthnRequestTask" />
- <Method name="execute" />
- <Bug pattern="UNVALIDATED_REDIRECT" />
- </Match>
- <Match>
- <!-- Builder pattern does not expose date elements -->
- <OR>
- <Class name="at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData" />
- <Class name="at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.JoseUtils$JwsResult"/>
- </OR>
- <OR>
- <Bug pattern="EI_EXPOSE_REP" />
- <Bug pattern="EI_EXPOSE_REP2" />
- </OR>
- </Match>
-</FindBugsFilter>
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-19 13:18:48 +0000