Web Application,데이터베이스 활용 전문가 양성과정/보안

lucy

무적강사 2019. 9. 27. 13:29

https://github.com/naver/lucy-xss-servlet-filter

 

lucy-filter사용

<!-- lucy -->
<dependency>
	<groupId>com.navercorp.lucy</groupId>
	<artifactId>lucy-xss-servlet</artifactId>
	<version>2.0.0</version>
</dependency>

 

web.xml

    <filter>
		<filter-name>multipartFilter</filter-name>
		<filter-class>org.springframework.web.multipart.support.MultipartFilter</filter-class>
	</filter>
	<filter-mapping>
		<filter-name>multipartFilter</filter-name>
		<url-pattern>/*</url-pattern>
	</filter-mapping> 	
    <filter>
		<filter-name>xssEscapeServletFilter</filter-name>
		<filter-class>com.navercorp.lucy.security.xss.servletfilter.XssEscapeServletFilter</filter-class>
	</filter>
	<filter-mapping>
		<filter-name>xssEscapeServletFilter</filter-name>
		<url-pattern>/*</url-pattern>
	</filter-mapping>

 

LoginSuccessHandler.java
0.00MB
lucy-xss-servlet-filter-rule.xml
0.00MB
JButtonTest.java
0.00MB