|
Nuxeo Enterprise Platform 5.4 | |||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object org.nuxeo.runtime.model.DefaultComponent org.nuxeo.ecm.platform.htmlsanitizer.HtmlSanitizerServiceImpl
public class HtmlSanitizerServiceImpl
Service that sanitizes some HMTL fields to remove potential cross-site scripting attacks in them.
Field Summary | |
---|---|
java.util.LinkedList<HtmlSanitizerAntiSamyDescriptor> |
allPolicies
All policies registered. |
java.util.List<HtmlSanitizerDescriptor> |
allSanitizers
All sanitizers registered. |
static java.lang.String |
ANTISAMY_XP
|
org.owasp.validator.html.Policy |
policy
Effective policy. |
static java.lang.String |
SANITIZER_XP
|
java.util.List<HtmlSanitizerDescriptor> |
sanitizers
Effective sanitizers. |
Constructor Summary | |
---|---|
HtmlSanitizerServiceImpl()
|
Method Summary | |
---|---|
void |
registerContribution(java.lang.Object contribution,
java.lang.String extensionPoint,
ComponentInstance contributor)
|
void |
sanitizeDocument(DocumentModel doc)
Sanitizes a document's fields, depending on the service configuration. |
java.lang.String |
sanitizeString(java.lang.String string,
java.lang.String info)
Sanitizes a string. |
void |
unregisterContribution(java.lang.Object contribution,
java.lang.String extensionPoint,
ComponentInstance contributor)
|
Methods inherited from class org.nuxeo.runtime.model.DefaultComponent |
---|
activate, deactivate, getAdapter, registerExtension, unregisterExtension |
Methods inherited from class java.lang.Object |
---|
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
---|
public static final java.lang.String ANTISAMY_XP
public static final java.lang.String SANITIZER_XP
public java.util.LinkedList<HtmlSanitizerAntiSamyDescriptor> allPolicies
public org.owasp.validator.html.Policy policy
public java.util.List<HtmlSanitizerDescriptor> allSanitizers
public java.util.List<HtmlSanitizerDescriptor> sanitizers
Constructor Detail |
---|
public HtmlSanitizerServiceImpl()
Method Detail |
---|
public void registerContribution(java.lang.Object contribution, java.lang.String extensionPoint, ComponentInstance contributor)
registerContribution
in class DefaultComponent
public void unregisterContribution(java.lang.Object contribution, java.lang.String extensionPoint, ComponentInstance contributor)
unregisterContribution
in class DefaultComponent
public void sanitizeDocument(DocumentModel doc) throws ClientException
HtmlSanitizerService
sanitizeDocument
in interface HtmlSanitizerService
ClientException
public java.lang.String sanitizeString(java.lang.String string, java.lang.String info)
HtmlSanitizerService
sanitizeString
in interface HtmlSanitizerService
string
- the string to sanitizeinfo
- additional info logged when something is sanitized
|
Nuxeo Enterprise Platform 5.4 | |||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |