You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@knox.apache.org by sm...@apache.org on 2022/07/21 10:19:40 UTC

[knox] branch master updated: KNOX-2782 - Enhanced Shiro config with the object class of invalidRequest (#610)

This is an automated email from the ASF dual-hosted git repository.

smolnar pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/knox.git


The following commit(s) were added to refs/heads/master by this push:
     new ae0fe4606 KNOX-2782 - Enhanced Shiro config with the object class of invalidRequest (#610)
ae0fe4606 is described below

commit ae0fe4606e56aa5ccccb63714504c6951e3bb1c0
Author: Sandor Molnar <sm...@apache.org>
AuthorDate: Thu Jul 21 12:19:34 2022 +0200

    KNOX-2782 - Enhanced Shiro config with the object class of invalidRequest (#610)
---
 .../src/main/java/org/apache/knox/gateway/deploy/impl/ShiroConfig.java   | 1 +
 1 file changed, 1 insertion(+)

diff --git a/gateway-provider-security-shiro/src/main/java/org/apache/knox/gateway/deploy/impl/ShiroConfig.java b/gateway-provider-security-shiro/src/main/java/org/apache/knox/gateway/deploy/impl/ShiroConfig.java
index 5e60d657a..de4084f41 100644
--- a/gateway-provider-security-shiro/src/main/java/org/apache/knox/gateway/deploy/impl/ShiroConfig.java
+++ b/gateway-provider-security-shiro/src/main/java/org/apache/knox/gateway/deploy/impl/ShiroConfig.java
@@ -33,6 +33,7 @@ public class ShiroConfig {
     String sectionName;
     String value;
 
+    params.putIfAbsent("main.invalidRequest", "org.apache.shiro.web.filter.InvalidRequestFilter");
     params.putIfAbsent("main.invalidRequest.blockSemicolon", "false");
     params.putIfAbsent("main.invalidRequest.blockBackslash", "false");
     params.putIfAbsent("main.invalidRequest.blockNonAscii", "false");