FuseGuard Logo

fuseguard.components.filters
Component SessionHijackingFilter

filters.BaseFilter
  |
  +--filters.SessionHijackingFilter

Detects if a Session Changes User Agent

Method Summary
public array getConfigurables()
          Returns a list of configurable properties
public string getDescription()
public string getName()
public string getThreatCategory()
          Returns session-hijacking
public numeric inspectRequest()
public void invalidateSession()
          Destroys the current session
public void resetFilter()
          Resets the current session user agent
public void setAddSessionIdToLogDetail(boolean enable)
          When true it adds the CFID, CFTOKEN, and JSESSIONID (if enabled) to the log message detail. False by default.

Methods inherited from filters.BaseFilter
setAllowURIList, blockEnabled, ignoresVariable, setIgnoreURIList, setScopes, inspectsRequestBody, inspectsCGIScope, inspectsUrlScope, setFilterLevel, setAllowDenyOrder, filterVariables, denyURI, getFilterID, inspectsRequest, setFilterWhitelist, ignoreVariable, ignoreURI, getHelp, init, inspectVariables, getFilterComponent, getRequestLogMessageDetail, inspectsCookieScope, allowURI, setLogLevel, getBlockLevel, inspectsURI, logEnabled, hasIPWhiteList, getFilterInstanceName, filterEnabled, filterRequest, getIPWhiteListProvider, setFilterID, getFilterLevel, inspectResponse, logOnly, setIgnoreVariableList, setRequestLogMessage, setBlockLevel, setFilterInstanceName, inspectVariable, inspectsFormScope, getLogLevel, getRequestLogMessage, getFirewall
 

Method Detail

getConfigurables

public array getConfigurables()
Returns a list of configurable properties


getDescription

public string getDescription()

getName

public string getName()

getThreatCategory

public string getThreatCategory()
Returns session-hijacking


inspectRequest

public numeric inspectRequest()

invalidateSession

public void invalidateSession()
Destroys the current session


resetFilter

public void resetFilter()
Resets the current session user agent


setAddSessionIdToLogDetail

public void setAddSessionIdToLogDetail(boolean enable)
When true it adds the CFID, CFTOKEN, and JSESSIONID (if enabled) to the log message detail. False by default.

Parameters:
boolean enable