Docjar: A Java Source and Docuemnt Enginecom.*    java.*    javax.*    org.*    all    new    plug-in

Quick Search    Search Deep
Home >> All >> com >> jcorporate >> expresso >> core >> security >> [ filters Javadoc ]

com.jcorporate.expresso.core.security.filters: Javadoc index of package com.jcorporate.expresso.core.security.filters.


Package Samples:

com.jcorporate.expresso.core.security.filters: This package contains Expresso's security system, switchable from "weak" security (e.g.  

Classes:

FilterManager: The primary purpose of this class is to filer out particular characters from a HTTP respone. The reason for this is that codes can be in- serted into a string that gets returned to a web browser, and these codes can cause the web browser to act on them in a way that is not as the site author inteded, and may be a breach of security. For more on these see: Understanding Malicious Content Mitigation for Web Developers The Filtermanager implements filtering based upon a particular characterset. It maintains a list of all filters that have been used since the initialization of the class. When a particular ...
Filter: This is the base class for all filters. The purpose of the filter mechanism is to remove possibly harmful html code that could be injected into dynamic html code by a hacker. The resulting code may steal users passwords from clients and do other bad things to their machines. Expresso implements transparent filtering by automatically filtering all string content from databases and input parameters. How to Create your own character-set filter 1 - Derive a class from Filter. The name of the class should be the name of the characterset you're using. If the characterset's name includes hyphens, substitute ...
FilterTreeNode: This class provides a "filter parse tree" interface to the system. It is a dual action object, it's a union of a node, and a leaf. Thus allowing us to play with TreeMap/HashMap quickly. Please Note: This class is unsynchronized for performance reasons, please be careful when using in a multi-threaded environment outisde of the Filter class.
ISO_8859_1_eForum: This is a bit of an oddity filter. It substitutes :) and :( and embeds predefined image links in their place. Please only use standard filter on this or you'll get smileys stripped out all together. Also, you want to make sure that filters only happen after a normal characterset filtering.s This ONLY does the smiley faces. :-)
FilterTree: A filter tree is a data structure that allows for quick matching and replacement of strings. Use it for a fast 'search and replace' system. Construction and setup is a fairly expensive operation in comparison to the actual searching, so use it for static types of filters that are usually instantiated for a long time.
AllowedHtmlPlusURLFilter: This class provides a filter implementation for HTML output, protecting against XSS exploits, but allows a small subset of HTML through, for simple formatting. It also creates anchor ( ) tags for anything that starts with 'http://', 'www.', etc.
ISO_8859_1: This class provides a filter implementation of the Filter class for the ISO-8859-1 character set (also known as the Roman Character set) in other words the characters used in the Western European Languages.
HtmlPlusURLFilter: This class provides a filter implementation for HTML output, protecting against XSS exploits, plus it creates anchor ( ) tags for anything that starts with 'http://', 'www.', etc.
HtmlFilter: This class provides a filter implementation of the Filter class for stripping out HTML tags in order to protect against XSS exploits
RawFilter: This class provides a filter implementation of the Filter class for returning raw, unfiltered values
gb2312: This class provides a filter implementation of the Filter class for the chinese gb2312
XmlFilter: This class provides a filter implementation of the Filter class for XML
FilterTreeTest: Unit test for the Filter Tree System.
FilterTest: Unit test for Security Filters

Home | Contact Us | Privacy Policy | Terms of Service