Package com.aquima.web.security

Class ConfigurableXssWhitelist

java.lang.Object

com.aquima.web.security.ConfigurableXssWhitelist

All Implemented Interfaces:

com.aquima.interactions.project.impl.xss.IXssWhitelist

public class ConfigurableXssWhitelist
extends Object
implements com.aquima.interactions.project.impl.xss.IXssWhitelist

A whitelist implementation which can be configured with allowed tags, attributes and protocols.

Since:

9.9.7

Author:

Mihai Bob

Constructor Summary

Constructors

Constructor	Description
ConfigurableXssWhitelist(SecurityConfigProperties config)	Creates a new whitelist instance based on the provided security configuration.

Method Summary

Modifier and Type	Method	Description
boolean	isValid(String data)
String	sanitize(String data)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

ConfigurableXssWhitelist

public ConfigurableXssWhitelist(SecurityConfigProperties config)

Creates a new whitelist instance based on the provided security configuration. If the configuration changes, a new whitelist instance must be created.

Parameters:

config - the security configuration

Method Details

sanitize

public String sanitize(String data)

Specified by:

sanitize in interface com.aquima.interactions.project.impl.xss.IXssWhitelist

isValid

public boolean isValid(String data)

Specified by:

isValid in interface com.aquima.interactions.project.impl.xss.IXssWhitelist