XSSESAPIURLSecurityAdapter (stumps 1.0-SNAPSHOT API)

java.lang.Object
- com.neurosys.cluzo.adapters.XSSESAPIURLSecurityAdapter

All Implemented Interfaces:

SecurityAdapter<String>

Deprecated.
```
@Deprecated
public class XSSESAPIURLSecurityAdapter
extends Object
implements SecurityAdapter<String>
```
A SecurityAdapter for XSS prevention (using OWASP ESAPI)

Author:

Arjun Dhar TODO: Has quirks, in process; may not require it. But testing and experimenting.

See Also:

http://code.google.com/p/owasp-esapi-java/source/browse/trunk/src/test/resources/.esapi/validation.properties?r=927

Field Summary
- Fields inherited from interface com.neurosys.cluzo.domain.SecurityAdapter
  REGEX_PROP_FILE

Constructor Summary

Constructors
Constructor and Description

XSSESAPIURLSecurityAdapter()
Deprecated.

Constructors
Constructor and Description
`XSSESAPIURLSecurityAdapter()` Deprecated.

Method Summary

All Methods Instance Methods Concrete Methods Deprecated Methods
Modifier and Type	Method and Description
`Data`	`sanitize(Data<String> input)` Deprecated. Sanitize content, from malicious to harmless.
`void`	`validate(Data<String> input)` Deprecated. Check if the input is safe or not When used in a chained or a `SecurityContext` with other `SecurityAdapter`s then the Adapters throwing a `OperationNotSupportedException` will be ignored.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - XSSESAPIURLSecurityAdapter
```
public XSSESAPIURLSecurityAdapter()
```
    Deprecated.
- Method Detail
  - sanitize
```
public Data sanitize(Data<String> input)
              throws org.owasp.validator.html.ScanException,
                     org.owasp.validator.html.PolicyException,
                     OperationNotSupportedException
```
    Deprecated.
    
    Description copied from interface: SecurityAdapter
    
    Sanitize content, from malicious to harmless. An adapter may or may not choose to support a Sanitization method. In the event it does not support it, it should throw a OperationNotSupportedException. When used in a chained or a SecurityContext with other SecurityAdapters then the Adapters throwing a OperationNotSupportedException will be ignored. Any other exception will be thrown if there is an issue in the executionof the sanitization process.
    
    Specified by:
    
    sanitize in interface SecurityAdapter<String>
    
    Returns:
    
    Throws:
    
    org.owasp.validator.html.ScanException
    
    org.owasp.validator.html.PolicyException
    
    OperationNotSupportedException
  - validate
```
public void validate(Data<String> input)
              throws SecurityException,
                     OperationNotSupportedException
```
    Deprecated.
    
    Description copied from interface: SecurityAdapter
    
    Check if the input is safe or not
    When used in a chained or a SecurityContext with other SecurityAdapters then the Adapters throwing a OperationNotSupportedException will be ignored.
    
    Specified by:
    
    validate in interface SecurityAdapter<String>
    
    Parameters:
    
    input - as Data
    
    Throws:
    
    SecurityException - is its is not safe. This is to provide additional details about the failure that te return param cannot.
    
    OperationNotSupportedException

Class XSSESAPIURLSecurityAdapter

Field Summary

Fields inherited from interface com.neurosys.cluzo.domain.SecurityAdapter

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

XSSESAPIURLSecurityAdapter

Method Detail

sanitize

validate