Re: HttpHeaderSecurityFilter does not work for URLs specified in security-constraint

Jasvant, On 1/28/22 08:28, Jasvant Singh wrote: Hi, I am trying to set up HttpHeaderSecurityFilter for enhancing the security of my website. Filter is defined in $TOMCAT_HOME/conf/web.xml as follows: httpHeaderSecurity org.apache.catalina.filters.HttpHeaderSecurityFilter

Re: HttpHeaderSecurityFilter does not work for URLs specified in security-constraint

On 28/01/2022 13:28, Jasvant Singh wrote: The HttpHeaderSecurityFilter works for all URLs except the pattern provided in setting. That is expected. Security constraints are applied before the control is passed to the web application. Any help is really appreciated. Is this really an

HttpHeaderSecurityFilter does not work for URLs specified in security-constraint

Hi, I am trying to set up HttpHeaderSecurityFilter for enhancing the security of my website. Filter is defined in $TOMCAT_HOME/conf/web.xml as follows: httpHeaderSecurity org.apache.catalina.filters.HttpHeaderSecurityFilter true hstsEnabled t