jahia-java-security
OfficialSecure Jahia Java backends with strong protection
AuthorJahia
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Securing HTTP-reachable surfaces in Jahia Java modules is essential to prevent data leakage, unauthorized access, and service misuse. This guide explains how to apply the four protection mechanisms to design, implement, and audit safe surfaces.
Core Features & Use Cases
- Security Filter: Applies origin and permission gating on exposed servlets and GraphQL endpoints to enforce default, auditable boundaries.
- CSRF Guard: Adds a cross-site request forgery defense for authenticated operations while noting guest bypass considerations.
- ACLs and Permissions: Uses JCR ACLs and declared permissions to enforce content and operation boundaries, with clear guidance on system vs user sessions.
- Captcha and Tokens: Provides non-replayable tokens to defend against automated abuse and complement other protections.
Quick Start
Audit a Jahia Java backend surface and implement the four protection mechanisms correctly.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: jahia-java-security Download link: https://github.com/Jahia/formidable/archive/main.zip#jahia-java-security Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 510,000+ vetted skills library on demand.