xxs
This commit is contained in:
parent
c8be6e2f02
commit
212b6b1541
|
@ -150,16 +150,16 @@ public class WebConfig implements WebMvcConfigurer {
|
|||
return new DefaultPointcutAdvisor(druidStatPointcut(), druidStatInterceptor());
|
||||
}
|
||||
|
||||
// /**
|
||||
// * xssFilter注册
|
||||
// */
|
||||
// @Bean
|
||||
// public FilterRegistrationBean xssFilterRegistration() {
|
||||
// XSSEscapeFilter xssFilter = new XSSEscapeFilter();
|
||||
// FilterRegistrationBean registration = new FilterRegistrationBean(xssFilter);
|
||||
// registration.addUrlPatterns("/*");
|
||||
// return registration;
|
||||
// }
|
||||
@Bean
|
||||
public FilterRegistrationBean xssFilterRegistration() {
|
||||
XSSEscapeFilter xssFilter = new XSSEscapeFilter();
|
||||
FilterRegistrationBean registration = new FilterRegistrationBean(xssFilter);
|
||||
xssFilter.excludes.add(".*file/upload.do");
|
||||
xssFilter.excludes.add(".*/jsp/editor.do");
|
||||
registration.addUrlPatterns("/*");
|
||||
|
||||
return registration;
|
||||
}
|
||||
|
||||
/**
|
||||
* RequestContextListener注册
|
||||
|
|
|
@ -13,6 +13,7 @@ ms:
|
|||
|
||||
upload:
|
||||
path: /upload
|
||||
mapping: /upload/**
|
||||
denied: .exe,.jsp
|
||||
allowed: jpg
|
||||
max-size: 1
|
||||
|
|
Loading…
Reference in New Issue