@Test public void prefixJsonCustom() throws Exception { MockHttpOutputMessage outputMessage = new MockHttpOutputMessage(); this.converter.setJsonPrefix(")))"); this.converter.writeInternal("foo", null, outputMessage); assertEquals(")))\"foo\"", outputMessage.getBodyAsString(StandardCharsets.UTF_8)); }
@Bean public MappingJackson2HttpMessageConverter mappingJackson2HttpMessageConverter() { MappingJackson2HttpMessageConverter converter = new MappingJackson2HttpMessageConverter(); converter.setJsonPrefix(")]}',\n"); return converter; }
@Bean public MappingJackson2HttpMessageConverter mappingJackson2HttpMessageConverter() { MappingJackson2HttpMessageConverter converter = new MappingJackson2HttpMessageConverter(); converter.setJsonPrefix(")]}',\n"); return converter; }
@Configuration @EnableWebMvc public class WebappConfig extends WebMvcConfigurerAdapter { @Override public void configureMessageConverters(List<HttpMessageConverter<?>> converters) { MappingJackson2HttpMessageConverter converter = new MappingJackson2HttpMessageConverter(); converter.setJsonPrefix(")]}',\n"); converters.add(converter); } }
/** * Prefixes JSON responses for JSON vulnerability. Disabled by default. * To enable, add this to your application properties: * lemon.enabled.json-prefix: true */ @Bean @ConditionalOnProperty(name="lemon.enabled.json-prefix") public MappingJackson2HttpMessageConverter mappingJackson2HttpMessageConverter( ObjectMapper objectMapper) { log.info("Configuring JSON vulnerability prefix"); MappingJackson2HttpMessageConverter converter = new MappingJackson2HttpMessageConverter(objectMapper); converter.setJsonPrefix(JSON_PREFIX); return converter; }