|
|
|
@ -16,7 +16,9 @@
|
|
|
|
|
~ specific language governing permissions and limitations
|
|
|
|
|
~ under the License.
|
|
|
|
|
-->
|
|
|
|
|
<web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://java.sun.com/xml/ns/javaee" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd" version="2.5">
|
|
|
|
|
<web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://java.sun.com/xml/ns/javaee"
|
|
|
|
|
xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd"
|
|
|
|
|
version="2.5">
|
|
|
|
|
<display-name>Certificate-Webapp</display-name>
|
|
|
|
|
<servlet>
|
|
|
|
|
<description>JAX-WS/JAX-RS Certificate Management Endpoint</description>
|
|
|
|
@ -71,6 +73,43 @@
|
|
|
|
|
<filter-name>ApiOriginFilter</filter-name>
|
|
|
|
|
<filter-class>org.wso2.carbon.certificate.mgt.cert.jaxrs.api.util.ApiOriginFilter</filter-class>
|
|
|
|
|
</filter>
|
|
|
|
|
|
|
|
|
|
<filter>
|
|
|
|
|
<filter-name>HttpHeaderSecurityFilter</filter-name>
|
|
|
|
|
<filter-class>org.apache.catalina.filters.HttpHeaderSecurityFilter</filter-class>
|
|
|
|
|
<init-param>
|
|
|
|
|
<param-name>hstsEnabled</param-name>
|
|
|
|
|
<param-value>false</param-value>
|
|
|
|
|
</init-param>
|
|
|
|
|
</filter>
|
|
|
|
|
|
|
|
|
|
<filter>
|
|
|
|
|
<filter-name>ContentTypeBasedCachePreventionFilter</filter-name>
|
|
|
|
|
<filter-class>org.wso2.carbon.ui.filters.cache.ContentTypeBasedCachePreventionFilter</filter-class>
|
|
|
|
|
<init-param>
|
|
|
|
|
<param-name>patterns</param-name>
|
|
|
|
|
<param-value>text/html" ,application/json" ,text/plain</param-value>
|
|
|
|
|
</init-param>
|
|
|
|
|
<init-param>
|
|
|
|
|
<param-name>filterAction</param-name>
|
|
|
|
|
<param-value>enforce</param-value>
|
|
|
|
|
</init-param>
|
|
|
|
|
<init-param>
|
|
|
|
|
<param-name>httpHeaders</param-name>
|
|
|
|
|
<param-value>Cache-Control: no-store, no-cache, must-revalidate, private</param-value>
|
|
|
|
|
</init-param>
|
|
|
|
|
</filter>
|
|
|
|
|
|
|
|
|
|
<filter-mapping>
|
|
|
|
|
<filter-name>HttpHeaderSecurityFilter</filter-name>
|
|
|
|
|
<url-pattern>/*</url-pattern>
|
|
|
|
|
</filter-mapping>
|
|
|
|
|
|
|
|
|
|
<filter-mapping>
|
|
|
|
|
<filter-name>ContentTypeBasedCachePreventionFilter</filter-name>
|
|
|
|
|
<url-pattern>/*</url-pattern>
|
|
|
|
|
</filter-mapping>
|
|
|
|
|
|
|
|
|
|
<filter-mapping>
|
|
|
|
|
<filter-name>ApiOriginFilter</filter-name>
|
|
|
|
|
<url-pattern>/*</url-pattern>
|
|
|
|
|