Module org.apache.wicket.core

Package org.apache.wicket.csp

Interface CSPRenderable

All Known Implementing Classes:

ClonedCSPValue, CSPDirectiveSandboxValue, CSPDirectiveSrcValue, FixedCSPValue, RelativeURICSPValue

public interface CSPRenderable

CSPRenderable describes a directive that is part of a Content-Security-Policy (CSP in short). Most directives are predefined in enums.

Author:

papegaaij

See Also:

• CSPDirectiveSrcValue
• CSPDirectiveSandboxValue
• FixedCSPValue

Method Summary

Modifier and Type	Method	Description
default void	checkValidityForSrc()	Checks if the CSPRenderable represents a valid value for a -src directive.
String	render(ContentSecurityPolicySettings settings, RequestCycle cycle)	Renders the value that should be put in the CSP header.

Method Details

render

String render(ContentSecurityPolicySettings settings,
 RequestCycle cycle)

Renders the value that should be put in the CSP header.

Parameters:

settings - The ContentSecurityPolicySettings that renders this value.

cycle - The current RequestCycle.

Returns:

The rendered value.

checkValidityForSrc

default void checkValidityForSrc()

Checks if the CSPRenderable represents a valid value for a -src directive. By default no checks are performed.

Throws:

IllegalStateException - when this CSPRenderable represents an invalid value.