Solved
Restrict POST request from a specific SlingAllMethodsServlet
Hi,
I have defined both doGet() and doPost() methods for SlingAllMethodsServlet as below
@9944223
protected void doGet(SlingHttpServletRequest request,
SlingHttpServletResponse response) throws ServletException {
}
@9944223
protected void doPost(SlingHttpServletRequest request,
SlingHttpServletResponse response) throws ServletException {
}
Why are both GET and POST requests in this servlet accessible from Postman even though sling.servlet.methods has been explicitly declared as GET as shown below?
@8220494(
service = { Servlet.class },
property = {
"sling.servlet.methods=" + HttpConstants.METHOD_GET,
"sling.servlet.paths="+ "/bin/sling/requestchecker",
},
)