Chapter 17. Security
Prev   Next

Chapter 17. Security

Table of Contents

17.1. HTTP Service Filters
17.1.1. Denial of Service Filter
17.1.2. Inet Access Filter
17.2. User Authentication
17.2.1. Login Passwords
17.2.2. PIN Codes
17.2.3. Authentication Tokens
17.2.4. One-time Authentication Tokens
17.2.5. User Dialog
17.3. Access over Internet
17.3.1. security.txt
17.4. Web Sessions
17.4.1. Web Session Timeout
17.4.2. Web Session Cookies
17.5. SSL Certificate and Password
17.6. Secured JMX Connection
17.7. Encrypted Secrets
17.8. Document Signature
17.9. User Client
17.10. Server Commands
17.11. Web Services
17.12. Log Files
17.13. Network Card Reader
17.14. Internal Services
17.15. External Services
17.16. Vouchers

This chapter discusses how SavaPage secures sensitive user and application data, and how it communicates with external Information Providers.

17.1. HTTP Service Filters

HTTP Service Filters enforce access policies at the point where remote clients connect to the SavaPage server. Connection requests may be delayed, throttled, rejected, aborted or denied. Statistics are shown in the Admin Web App. See Section 4.3.7, “Filtered Requests”.

Note

Details of the filtered requests are persisted in the rotating log file:

/opt/savapage/server/logs/security.log

This file has a tab separated value (TSV) format for easy import and manipulation into spreadsheet programs. See /opt/savapage/server/data/log4j.properties for more information.

If your log4j.properties does not contain the "Security Logger" section, copy it from:

/opt/savapage/server/examples/data/log4j.properties.template

17.1.1. Denial of Service Filter

A Denial of Service Filter keeps track of the number of requests from a connection to the SavaPage server per second. If a limit is exceeded, the request is either delayed, throttled, rejected or aborted. A throttled request is placed in a queue and will only proceed when there is capacity. HTTP status code 429 is sent if there are too many requests.

Configuration propertyDescription

system.dosfilter.enable

Set to Y (default) or N to enable/disable the Denial of Service Filter.

system.dosfilter.delay-msec

Delay (in milliseconds) that is applied to all requests over the rate limit system.dosfilter.max-requests-per-sec, before they are considered at all. -1 means just reject request, 0 means no delay (throttled), otherwise it is the delay. Default: 100.

system.dosfilter.max-idle-tracker-msec

Maximum amount of time (in milliseconds) to keep track of request rates for a connection, before deciding that the user has gone away, and discarding it. Default: 30000.

system.dosfilter.max-request-msec

Maximum amount of time (in milliseconds) to allow the request to process. Default: 30000.

system.dosfilter.max-requests-per-sec

Maximum number of requests from a connection per second. Requests in excess of this are first delayed, then throttled. Default: 75.

system.dosfilter.throttle-msec

Amount of time (in milliseconds) to async wait for semaphore. Default: 30000.

system.dosfilter.throttled-requests

Number of requests over the rate limit able to be considered at once. Default: 5.

system.dosfilter.too-many-code

HTTP status code to send if there are too many requests. Default: 429 (too many requests). 503 (service unavailable) is another option.

system.dosfilter.whitelist

Comma-separated list of host names, IPv4 addresses in decimal notation A.B.C.D, and canonical (non-compressed) IPv6 addresses that will not be rate limited. IPv4 CIDR notation A.B.C.D/M is supported, IPv6 CIDR notation is not.

Note: localhost , 127.0.0.1 and 0:0:0:0:0:0:0:1 are implicitly whitelisted.

system.dosfilter.warn-interval.applog.mins

Interval (minutes) within which filter events are totaled and written as warning in the Application Log. The expiration of the interval is triggered by a filter event. Default: 5.

system.dosfilter.warn-interval.webapp.secs

Interval (seconds) within which filter events are totaled and send as Real-time Activity warning with popup message to the Admin Web App. Default: 60.

Table 17.1. Denial of Service Filter : Configuration Properties


See Section 4.11.14, “Config Editor” on how to set these properties.

17.1.2. Inet Access Filter

An Inet Access Filter allows/denies remote access to the SavaPage server according to a list of IP addresses. HTTP error code 403 is sent if a request is denied.

Configuration propertyDescription

system.inetfilter.enable

Set to Y or N (default) to enable/disable the Inet Access Filter.

system.inetfilter.whitelist

A list of comma-separated list of IPv4/6 addresses, individual or in CIDR notation that are allowed access. Requests from remote addresses that do not match the whitelist are denied with HTTP error code 403.

Note: 127.0.0.1 and 0:0:0:0:0:0:0:1 are implicitly whitelisted.

system.inetfilter.whitelist.empty-allow-all

Set to Y (default) or N to enable/disable empty white list to be treated as "match all".

If N, an empty whitelist means that only 127.0.0.1 and 0:0:0:0:0:0:0:1 are allowed.

system.inetfilter.blacklist

A list of comma-separated IPv4/6 addresses, individual or in CIDR notation. Requests from remote addresses that match the list are denied with HTTP error code 403.

Black list entries are always applied, so that even if an entry matches the white list, a black list entry will override it.

Note: 127.0.0.1 and 0:0:0:0:0:0:0:1 are not allowed on the list.

system.inetfilter.warn-interval.applog.mins

Interval (minutes) within which denied requests are totaled and written as warning in the Application Log. The expiration of the interval is triggered by a InetAccessFilter event. Default: 5.

system.inetfilter.warn-interval.webapp.secs

Interval (seconds) within which denied requests are totaled and send as Real-time Activity warning with popup message to the Admin Web App. Default: 60.

Table 17.2. Inet Access Filter : Configuration Properties


See Section 4.11.14, “Config Editor” on how to set these properties.

Prev   Next
16.2. Environmental Impact Home 17.2. User Authentication

SavaPage Open Print Portal Software © 2025 by Datraverse is OSI Certified Open Source Software licensed under AGPLv3, or any later version, in compliance with Third Party Software Licenses. SavaPage User Manual © 2025 by Rijk Ravestein is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.