You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@knox.apache.org by lm...@apache.org on 2017/09/07 22:09:24 UTC
svn commit: r1807654 - in /knox: site/books/knox-0-10-0/
site/books/knox-0-11-0/ site/books/knox-0-12-0/ site/books/knox-0-13-0/
site/books/knox-0-4-0/ site/books/knox-0-5-0/ site/books/knox-0-6-0/
site/books/knox-0-7-0/ site/books/knox-0-8-0/ site/boo...
Author: lmccay
Date: Thu Sep 7 22:09:23 2017
New Revision: 1807654
URL: http://svn.apache.org/viewvc?rev=1807654&view=rev
Log:
KNOX-1028 - X-Frame-Options and other security headers are ineffective
Modified:
knox/site/books/knox-0-10-0/deployment-overview.png
knox/site/books/knox-0-10-0/deployment-provider.png
knox/site/books/knox-0-10-0/deployment-service.png
knox/site/books/knox-0-10-0/general_saml_flow.png
knox/site/books/knox-0-10-0/runtime-overview.png
knox/site/books/knox-0-10-0/runtime-request-processing.png
knox/site/books/knox-0-10-0/user-guide.html
knox/site/books/knox-0-11-0/deployment-overview.png
knox/site/books/knox-0-11-0/deployment-provider.png
knox/site/books/knox-0-11-0/deployment-service.png
knox/site/books/knox-0-11-0/general_saml_flow.png
knox/site/books/knox-0-11-0/runtime-overview.png
knox/site/books/knox-0-11-0/runtime-request-processing.png
knox/site/books/knox-0-11-0/user-guide.html
knox/site/books/knox-0-12-0/deployment-overview.png
knox/site/books/knox-0-12-0/deployment-provider.png
knox/site/books/knox-0-12-0/deployment-service.png
knox/site/books/knox-0-12-0/general_saml_flow.png
knox/site/books/knox-0-12-0/runtime-overview.png
knox/site/books/knox-0-12-0/runtime-request-processing.png
knox/site/books/knox-0-12-0/user-guide.html
knox/site/books/knox-0-13-0/deployment-overview.png
knox/site/books/knox-0-13-0/deployment-provider.png
knox/site/books/knox-0-13-0/deployment-service.png
knox/site/books/knox-0-13-0/general_saml_flow.png
knox/site/books/knox-0-13-0/runtime-overview.png
knox/site/books/knox-0-13-0/runtime-request-processing.png
knox/site/books/knox-0-13-0/user-guide.html
knox/site/books/knox-0-4-0/deployment-overview.png
knox/site/books/knox-0-4-0/deployment-provider.png
knox/site/books/knox-0-4-0/deployment-service.png
knox/site/books/knox-0-4-0/runtime-overview.png
knox/site/books/knox-0-4-0/runtime-request-processing.png
knox/site/books/knox-0-5-0/deployment-overview.png
knox/site/books/knox-0-5-0/deployment-provider.png
knox/site/books/knox-0-5-0/deployment-service.png
knox/site/books/knox-0-5-0/runtime-overview.png
knox/site/books/knox-0-5-0/runtime-request-processing.png
knox/site/books/knox-0-6-0/deployment-overview.png
knox/site/books/knox-0-6-0/deployment-provider.png
knox/site/books/knox-0-6-0/deployment-service.png
knox/site/books/knox-0-6-0/runtime-overview.png
knox/site/books/knox-0-6-0/runtime-request-processing.png
knox/site/books/knox-0-7-0/deployment-overview.png
knox/site/books/knox-0-7-0/deployment-provider.png
knox/site/books/knox-0-7-0/deployment-service.png
knox/site/books/knox-0-7-0/general_saml_flow.png
knox/site/books/knox-0-7-0/runtime-overview.png
knox/site/books/knox-0-7-0/runtime-request-processing.png
knox/site/books/knox-0-8-0/deployment-overview.png
knox/site/books/knox-0-8-0/deployment-provider.png
knox/site/books/knox-0-8-0/deployment-service.png
knox/site/books/knox-0-8-0/general_saml_flow.png
knox/site/books/knox-0-8-0/runtime-overview.png
knox/site/books/knox-0-8-0/runtime-request-processing.png
knox/site/books/knox-0-9-0/deployment-overview.png
knox/site/books/knox-0-9-0/deployment-provider.png
knox/site/books/knox-0-9-0/deployment-service.png
knox/site/books/knox-0-9-0/general_saml_flow.png
knox/site/books/knox-0-9-0/runtime-overview.png
knox/site/books/knox-0-9-0/runtime-request-processing.png
knox/site/books/knox-0-9-0/user-guide.html
knox/site/books/knox-0-9-1/deployment-overview.png
knox/site/books/knox-0-9-1/deployment-provider.png
knox/site/books/knox-0-9-1/deployment-service.png
knox/site/books/knox-0-9-1/general_saml_flow.png
knox/site/books/knox-0-9-1/runtime-overview.png
knox/site/books/knox-0-9-1/runtime-request-processing.png
knox/site/books/knox-0-9-1/user-guide.html
knox/trunk/books/0.10.0/config_webappsec_provider.md
knox/trunk/books/0.11.0/config_webappsec_provider.md
knox/trunk/books/0.12.0/config_webappsec_provider.md
knox/trunk/books/0.13.0/config_webappsec_provider.md
knox/trunk/books/0.9.0/config_webappsec_provider.md
knox/trunk/books/0.9.1/config_webappsec_provider.md
Modified: knox/site/books/knox-0-10-0/deployment-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-10-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-10-0/deployment-provider.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-10-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-10-0/deployment-service.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-10-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-10-0/general_saml_flow.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-10-0/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-10-0/runtime-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-10-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-10-0/runtime-request-processing.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-10-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-10-0/user-guide.html
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-10-0/user-guide.html?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
--- knox/site/books/knox-0-10-0/user-guide.html (original)
+++ knox/site/books/knox-0-10-0/user-guide.html Thu Sep 7 22:09:23 2017
@@ -2122,7 +2122,7 @@ APACHE_HOME/bin/apachectl -k stop
<param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param>
<param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param>
<param><name>cors.enabled</name><value>true</value></param>
- <param><name>xframe-options.enabled</name><value>true</value></param>
+ <param><name>xframe.options.enabled</name><value>true</value></param>
</provider>
</code></pre><h4><a id="Descriptions">Descriptions</a> <a href="#Descriptions"><img src="markbook-section-link.png"/></a></h4><p>The following tables describes the configuration options for the web app security provider:</p><h5><a id="CSRF">CSRF</a> <a href="#CSRF"><img src="markbook-section-link.png"/></a></h5><h6><a id="Config">Config</a> <a href="#Config"><img src="markbook-section-link.png"/></a></h6>
<table>
@@ -2224,12 +2224,12 @@ APACHE_HOME/bin/apachectl -k stop
</thead>
<tbody>
<tr>
- <td>xframe-options.enabled </td>
+ <td>xframe.options.enabled </td>
<td>This param enables the X-Frame-Options capabilities</td>
<td>false</td>
</tr>
<tr>
- <td>xframe-options.value </td>
+ <td>xframe.options </td>
<td>This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri</td>
<td>DENY</td>
</tr>
Modified: knox/site/books/knox-0-11-0/deployment-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-11-0/deployment-provider.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-11-0/deployment-service.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-11-0/general_saml_flow.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-11-0/runtime-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-11-0/runtime-request-processing.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-11-0/user-guide.html
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/user-guide.html?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
--- knox/site/books/knox-0-11-0/user-guide.html (original)
+++ knox/site/books/knox-0-11-0/user-guide.html Thu Sep 7 22:09:23 2017
@@ -2220,7 +2220,7 @@ APACHE_HOME/bin/apachectl -k stop
<param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param>
<param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param>
<param><name>cors.enabled</name><value>true</value></param>
- <param><name>xframe-options.enabled</name><value>true</value></param>
+ <param><name>xframe.options.enabled</name><value>true</value></param>
</provider>
</code></pre><h4><a id="Descriptions">Descriptions</a> <a href="#Descriptions"><img src="markbook-section-link.png"/></a></h4><p>The following tables describes the configuration options for the web app security provider:</p><h5><a id="CSRF">CSRF</a> <a href="#CSRF"><img src="markbook-section-link.png"/></a></h5><h6><a id="Config">Config</a> <a href="#Config"><img src="markbook-section-link.png"/></a></h6>
<table>
@@ -2322,12 +2322,12 @@ APACHE_HOME/bin/apachectl -k stop
</thead>
<tbody>
<tr>
- <td>xframe-options.enabled </td>
+ <td>xframe.options.enabled </td>
<td>This param enables the X-Frame-Options capabilities</td>
<td>false</td>
</tr>
<tr>
- <td>xframe-options.value </td>
+ <td>xframe.options </td>
<td>This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri</td>
<td>DENY</td>
</tr>
Modified: knox/site/books/knox-0-12-0/deployment-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-12-0/deployment-provider.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-12-0/deployment-service.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-12-0/general_saml_flow.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-12-0/runtime-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-12-0/runtime-request-processing.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-12-0/user-guide.html
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/user-guide.html?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
--- knox/site/books/knox-0-12-0/user-guide.html (original)
+++ knox/site/books/knox-0-12-0/user-guide.html Thu Sep 7 22:09:23 2017
@@ -2250,7 +2250,7 @@ APACHE_HOME/bin/apachectl -k stop
<param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param>
<param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param>
<param><name>cors.enabled</name><value>true</value></param>
- <param><name>xframe-options.enabled</name><value>true</value></param>
+ <param><name>xframe.options.enabled</name><value>true</value></param>
</provider>
</code></pre><h4><a id="Descriptions">Descriptions</a> <a href="#Descriptions"><img src="markbook-section-link.png"/></a></h4><p>The following tables describes the configuration options for the web app security provider:</p><h5><a id="CSRF">CSRF</a> <a href="#CSRF"><img src="markbook-section-link.png"/></a></h5><h6><a id="Config">Config</a> <a href="#Config"><img src="markbook-section-link.png"/></a></h6>
<table>
@@ -2352,12 +2352,12 @@ APACHE_HOME/bin/apachectl -k stop
</thead>
<tbody>
<tr>
- <td>xframe-options.enabled </td>
+ <td>xframe.options.enabled </td>
<td>This param enables the X-Frame-Options capabilities</td>
<td>false</td>
</tr>
<tr>
- <td>xframe-options.value </td>
+ <td>xframe.options </td>
<td>This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri</td>
<td>DENY</td>
</tr>
Modified: knox/site/books/knox-0-13-0/deployment-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-13-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-13-0/deployment-provider.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-13-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-13-0/deployment-service.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-13-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-13-0/general_saml_flow.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-13-0/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-13-0/runtime-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-13-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-13-0/runtime-request-processing.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-13-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-13-0/user-guide.html
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-13-0/user-guide.html?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
--- knox/site/books/knox-0-13-0/user-guide.html (original)
+++ knox/site/books/knox-0-13-0/user-guide.html Thu Sep 7 22:09:23 2017
@@ -2291,7 +2291,7 @@ APACHE_HOME/bin/apachectl -k stop
<param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param>
<param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param>
<param><name>cors.enabled</name><value>true</value></param>
- <param><name>xframe-options.enabled</name><value>true</value></param>
+ <param><name>xframe.options.enabled</name><value>true</value></param>
</provider>
</code></pre><h4><a id="Descriptions">Descriptions</a> <a href="#Descriptions"><img src="markbook-section-link.png"/></a></h4><p>The following tables describes the configuration options for the web app security provider:</p><h5><a id="CSRF">CSRF</a> <a href="#CSRF"><img src="markbook-section-link.png"/></a></h5><h6><a id="Config">Config</a> <a href="#Config"><img src="markbook-section-link.png"/></a></h6>
<table>
@@ -2393,12 +2393,12 @@ APACHE_HOME/bin/apachectl -k stop
</thead>
<tbody>
<tr>
- <td>xframe-options.enabled </td>
+ <td>xframe.options.enabled </td>
<td>This param enables the X-Frame-Options capabilities</td>
<td>false</td>
</tr>
<tr>
- <td>xframe-options.value </td>
+ <td>xframe.options </td>
<td>This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri</td>
<td>DENY</td>
</tr>
Modified: knox/site/books/knox-0-4-0/deployment-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-4-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-4-0/deployment-provider.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-4-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-4-0/deployment-service.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-4-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-4-0/runtime-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-4-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-4-0/runtime-request-processing.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-4-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-5-0/deployment-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-5-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-5-0/deployment-provider.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-5-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-5-0/deployment-service.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-5-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-5-0/runtime-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-5-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-5-0/runtime-request-processing.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-5-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-6-0/deployment-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-6-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-6-0/deployment-provider.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-6-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-6-0/deployment-service.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-6-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-6-0/runtime-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-6-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-6-0/runtime-request-processing.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-6-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-7-0/deployment-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-7-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-7-0/deployment-provider.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-7-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-7-0/deployment-service.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-7-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-7-0/general_saml_flow.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-7-0/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-7-0/runtime-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-7-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-7-0/runtime-request-processing.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-7-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-8-0/deployment-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-8-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-8-0/deployment-provider.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-8-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-8-0/deployment-service.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-8-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-8-0/general_saml_flow.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-8-0/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-8-0/runtime-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-8-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-8-0/runtime-request-processing.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-8-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-9-0/deployment-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-9-0/deployment-provider.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-9-0/deployment-service.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-9-0/general_saml_flow.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-0/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-9-0/runtime-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-9-0/runtime-request-processing.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-9-0/user-guide.html
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-0/user-guide.html?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
--- knox/site/books/knox-0-9-0/user-guide.html (original)
+++ knox/site/books/knox-0-9-0/user-guide.html Thu Sep 7 22:09:23 2017
@@ -2062,7 +2062,7 @@ APACHE_HOME/bin/apachectl -k stop
<param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param>
<param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param>
<param><name>cors.enabled</name><value>true</value></param>
- <param><name>xframe-options.enabled</name><value>true</value></param>
+ <param><name>xframe.options.enabled</name><value>true</value></param>
</provider>
</code></pre><h4><a id="Descriptions">Descriptions</a> <a href="#Descriptions"><img src="markbook-section-link.png"/></a></h4><p>The following tables describes the configuration options for the web app security provider:</p><h5><a id="CSRF">CSRF</a> <a href="#CSRF"><img src="markbook-section-link.png"/></a></h5><h6><a id="Config">Config</a> <a href="#Config"><img src="markbook-section-link.png"/></a></h6>
<table>
@@ -2164,12 +2164,12 @@ APACHE_HOME/bin/apachectl -k stop
</thead>
<tbody>
<tr>
- <td>xframe-options.enabled </td>
+ <td>xframe.options.enabled </td>
<td>This param enables the X-Frame-Options capabilities</td>
<td>false</td>
</tr>
<tr>
- <td>xframe-options.value </td>
+ <td>xframe.options </td>
<td>This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri</td>
<td>DENY</td>
</tr>
Modified: knox/site/books/knox-0-9-1/deployment-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-1/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-9-1/deployment-provider.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-1/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-9-1/deployment-service.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-1/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-9-1/general_saml_flow.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-1/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-9-1/runtime-overview.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-1/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-9-1/runtime-request-processing.png
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-1/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
Binary files - no diff available.
Modified: knox/site/books/knox-0-9-1/user-guide.html
URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-1/user-guide.html?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
--- knox/site/books/knox-0-9-1/user-guide.html (original)
+++ knox/site/books/knox-0-9-1/user-guide.html Thu Sep 7 22:09:23 2017
@@ -2062,7 +2062,7 @@ APACHE_HOME/bin/apachectl -k stop
<param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param>
<param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param>
<param><name>cors.enabled</name><value>true</value></param>
- <param><name>xframe-options.enabled</name><value>true</value></param>
+ <param><name>xframe.options.enabled</name><value>true</value></param>
</provider>
</code></pre><h4><a id="Descriptions">Descriptions</a> <a href="#Descriptions"><img src="markbook-section-link.png"/></a></h4><p>The following tables describes the configuration options for the web app security provider:</p><h5><a id="CSRF">CSRF</a> <a href="#CSRF"><img src="markbook-section-link.png"/></a></h5><h6><a id="Config">Config</a> <a href="#Config"><img src="markbook-section-link.png"/></a></h6>
<table>
@@ -2164,12 +2164,12 @@ APACHE_HOME/bin/apachectl -k stop
</thead>
<tbody>
<tr>
- <td>xframe-options.enabled </td>
+ <td>xframe.options.enabled </td>
<td>This param enables the X-Frame-Options capabilities</td>
<td>false</td>
</tr>
<tr>
- <td>xframe-options.value </td>
+ <td>xframe.options </td>
<td>This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri</td>
<td>DENY</td>
</tr>
Modified: knox/trunk/books/0.10.0/config_webappsec_provider.md
URL: http://svn.apache.org/viewvc/knox/trunk/books/0.10.0/config_webappsec_provider.md?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
--- knox/trunk/books/0.10.0/config_webappsec_provider.md (original)
+++ knox/trunk/books/0.10.0/config_webappsec_provider.md Thu Sep 7 22:09:23 2017
@@ -51,7 +51,7 @@ Because of this one-to-many provider/fil
<param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param>
<param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param>
<param><name>cors.enabled</name><value>true</value></param>
- <param><name>xframe-options.enabled</name><value>true</value></param>
+ <param><name>xframe.options.enabled</name><value>true</value></param>
</provider>
#### Descriptions ####
@@ -101,6 +101,6 @@ Cross Frame Scripting and Clickjacking a
Name | Description | Default
-----------------------------|-------------|---------
-xframe-options.enabled | This param enables the X-Frame-Options capabilities|false
-xframe-options.value | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY
+xframe.options.enabled | This param enables the X-Frame-Options capabilities|false
+xframe.options | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY
Modified: knox/trunk/books/0.11.0/config_webappsec_provider.md
URL: http://svn.apache.org/viewvc/knox/trunk/books/0.11.0/config_webappsec_provider.md?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
--- knox/trunk/books/0.11.0/config_webappsec_provider.md (original)
+++ knox/trunk/books/0.11.0/config_webappsec_provider.md Thu Sep 7 22:09:23 2017
@@ -51,7 +51,7 @@ Because of this one-to-many provider/fil
<param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param>
<param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param>
<param><name>cors.enabled</name><value>true</value></param>
- <param><name>xframe-options.enabled</name><value>true</value></param>
+ <param><name>xframe.options.enabled</name><value>true</value></param>
</provider>
#### Descriptions ####
@@ -101,6 +101,6 @@ Cross Frame Scripting and Clickjacking a
Name | Description | Default
-----------------------------|-------------|---------
-xframe-options.enabled | This param enables the X-Frame-Options capabilities|false
-xframe-options.value | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY
+xframe.options.enabled | This param enables the X-Frame-Options capabilities|false
+xframe.options | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY
Modified: knox/trunk/books/0.12.0/config_webappsec_provider.md
URL: http://svn.apache.org/viewvc/knox/trunk/books/0.12.0/config_webappsec_provider.md?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
--- knox/trunk/books/0.12.0/config_webappsec_provider.md (original)
+++ knox/trunk/books/0.12.0/config_webappsec_provider.md Thu Sep 7 22:09:23 2017
@@ -51,7 +51,7 @@ Because of this one-to-many provider/fil
<param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param>
<param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param>
<param><name>cors.enabled</name><value>true</value></param>
- <param><name>xframe-options.enabled</name><value>true</value></param>
+ <param><name>xframe.options.enabled</name><value>true</value></param>
</provider>
#### Descriptions ####
@@ -101,6 +101,6 @@ Cross Frame Scripting and Clickjacking a
Name | Description | Default
-----------------------------|-------------|---------
-xframe-options.enabled | This param enables the X-Frame-Options capabilities|false
-xframe-options.value | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY
+xframe.options.enabled | This param enables the X-Frame-Options capabilities|false
+xframe.options | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY
Modified: knox/trunk/books/0.13.0/config_webappsec_provider.md
URL: http://svn.apache.org/viewvc/knox/trunk/books/0.13.0/config_webappsec_provider.md?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
--- knox/trunk/books/0.13.0/config_webappsec_provider.md (original)
+++ knox/trunk/books/0.13.0/config_webappsec_provider.md Thu Sep 7 22:09:23 2017
@@ -51,7 +51,7 @@ Because of this one-to-many provider/fil
<param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param>
<param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param>
<param><name>cors.enabled</name><value>true</value></param>
- <param><name>xframe-options.enabled</name><value>true</value></param>
+ <param><name>xframe.options.enabled</name><value>true</value></param>
</provider>
#### Descriptions ####
@@ -101,6 +101,6 @@ Cross Frame Scripting and Clickjacking a
Name | Description | Default
-----------------------------|-------------|---------
-xframe-options.enabled | This param enables the X-Frame-Options capabilities|false
-xframe-options.value | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY
+xframe.options.enabled | This param enables the X-Frame-Options capabilities|false
+xframe.options | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY
Modified: knox/trunk/books/0.9.0/config_webappsec_provider.md
URL: http://svn.apache.org/viewvc/knox/trunk/books/0.9.0/config_webappsec_provider.md?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
--- knox/trunk/books/0.9.0/config_webappsec_provider.md (original)
+++ knox/trunk/books/0.9.0/config_webappsec_provider.md Thu Sep 7 22:09:23 2017
@@ -51,7 +51,7 @@ Because of this one-to-many provider/fil
<param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param>
<param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param>
<param><name>cors.enabled</name><value>true</value></param>
- <param><name>xframe-options.enabled</name><value>true</value></param>
+ <param><name>xframe.options.enabled</name><value>true</value></param>
</provider>
#### Descriptions ####
@@ -101,6 +101,6 @@ Cross Frame Scripting and Clickjacking a
Name | Description | Default
-----------------------------|-------------|---------
-xframe-options.enabled | This param enables the X-Frame-Options capabilities|false
-xframe-options.value | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY
+xframe.options.enabled | This param enables the X-Frame-Options capabilities|false
+xframe.options | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY
Modified: knox/trunk/books/0.9.1/config_webappsec_provider.md
URL: http://svn.apache.org/viewvc/knox/trunk/books/0.9.1/config_webappsec_provider.md?rev=1807654&r1=1807653&r2=1807654&view=diff
==============================================================================
--- knox/trunk/books/0.9.1/config_webappsec_provider.md (original)
+++ knox/trunk/books/0.9.1/config_webappsec_provider.md Thu Sep 7 22:09:23 2017
@@ -51,7 +51,7 @@ Because of this one-to-many provider/fil
<param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param>
<param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param>
<param><name>cors.enabled</name><value>true</value></param>
- <param><name>xframe-options.enabled</name><value>true</value></param>
+ <param><name>xframe.options.enabled</name><value>true</value></param>
</provider>
#### Descriptions ####
@@ -101,6 +101,6 @@ Cross Frame Scripting and Clickjacking a
Name | Description | Default
-----------------------------|-------------|---------
-xframe-options.enabled | This param enables the X-Frame-Options capabilities|false
-xframe-options.value | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY
+xframe.options.enabled | This param enables the X-Frame-Options capabilities|false
+xframe.options | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY