Package org.kawanfw.sql.api.server.firewall

Provides interface and default implementation for SQL firewalling.
  • Interface Summary
    Interface Description
    SqlFirewallManager
    Interface that allows to define firewall rules for AceQL HTTP SQL calls.
  • Class Summary
    Class Description
    CsvRulesManager
    Firewall manager that checks each SQL request against the content of a CSV File.
    CsvRulesManagerNoReload
    Firewall manager that extends CsvRulesManager, the only change is to prohibit reloading rules when the CSV file is updated.
    DenyDatabaseWriteManager
    Firewall manager that denies any update of the database for the passed user.
    DenyDclManager
    Firewall manager that denies any DCL (Data Control Language) call.
    DenyDdlManager
    Firewall manager that denies any DDL (Data Definition Language) call.
    DenyExceptOnWhitelistManager
    This SQL Firewall Manager only allows incoming SQL statements that match a list of SQL statements stored in the following text file sequentially, one per line.
    DenyMetadataQueryManager
    Firewall manager that denies the use of the AceQL Metadata Query API.
    DenyOnBlacklistManager
    This SQL Firewall Manager denies incoming SQL statements that match a list of SQL statements stored in the following text file sequentially, one per line.
    DenySqlInjectionManager
    A firewall manager that allows detecting SQL injection attacks, using the third-party Cloudmersive API:
    Usage requires getting a Cloudmersive API key through a free or paying account creation at www.cloudmersive.com/pricing.
    DenySqlInjectionManagerAsync
    A firewall manager that allows detecting SQL asynchronously injection attacks, using the third-party Cloudmersive API:
    Usage requires getting a Cloudmersive API key through a free or paying account creation at www.cloudmersive.com/pricing.
    DenyStatementClassManager
    Firewall manager that denies any call of the raw Statement class.