|
|
|
@ -74,6 +74,43 @@
|
|
|
|
|
<filter-name>ApiOriginFilter</filter-name>
|
|
|
|
|
<filter-class>org.wso2.carbon.device.mgt.jaxrs.ApiOriginFilter</filter-class>
|
|
|
|
|
</filter>
|
|
|
|
|
|
|
|
|
|
<filter>
|
|
|
|
|
<filter-name>HttpHeaderSecurityFilter</filter-name>
|
|
|
|
|
<filter-class>org.apache.catalina.filters.HttpHeaderSecurityFilter</filter-class>
|
|
|
|
|
<init-param>
|
|
|
|
|
<param-name>hstsEnabled</param-name>
|
|
|
|
|
<param-value>false</param-value>
|
|
|
|
|
</init-param>
|
|
|
|
|
</filter>
|
|
|
|
|
|
|
|
|
|
<filter>
|
|
|
|
|
<filter-name>ContentTypeBasedCachePreventionFilter</filter-name>
|
|
|
|
|
<filter-class>org.wso2.carbon.ui.filters.cache.ContentTypeBasedCachePreventionFilter</filter-class>
|
|
|
|
|
<init-param>
|
|
|
|
|
<param-name>patterns</param-name>
|
|
|
|
|
<param-value>"text/html*","application/json*","text/plain*"</param-value>
|
|
|
|
|
</init-param>
|
|
|
|
|
<init-param>
|
|
|
|
|
<param-name>filterAction</param-name>
|
|
|
|
|
<param-value>enforce</param-value>
|
|
|
|
|
</init-param>
|
|
|
|
|
<init-param>
|
|
|
|
|
<param-name>httpHeaders</param-name>
|
|
|
|
|
<param-value>Cache-Control: no-store, no-cache, must-revalidate, private</param-value>
|
|
|
|
|
</init-param>
|
|
|
|
|
</filter>
|
|
|
|
|
|
|
|
|
|
<filter-mapping>
|
|
|
|
|
<filter-name>HttpHeaderSecurityFilter</filter-name>
|
|
|
|
|
<url-pattern>/*</url-pattern>
|
|
|
|
|
</filter-mapping>
|
|
|
|
|
|
|
|
|
|
<filter-mapping>
|
|
|
|
|
<filter-name>ContentTypeBasedCachePreventionFilter</filter-name>
|
|
|
|
|
<url-pattern>/*</url-pattern>
|
|
|
|
|
</filter-mapping>
|
|
|
|
|
|
|
|
|
|
<filter-mapping>
|
|
|
|
|
<filter-name>ApiOriginFilter</filter-name>
|
|
|
|
|
<url-pattern>/*</url-pattern>
|
|
|
|
|