fr.paris.lutece.portal.web.xss
Class SafeRequestFilter

java.lang.Object
  extended by fr.paris.lutece.portal.web.xss.SafeRequestFilter
All Implemented Interfaces:
javax.servlet.Filter
Direct Known Subclasses:
SafeRequestFilterAdmin, SafeRequestFilterSite

public abstract class SafeRequestFilter
extends java.lang.Object
implements javax.servlet.Filter

A rewrite of the HttpServletRequestWrapper for escaping xss characters which could be contained inside the request


Constructor Summary
SafeRequestFilter()
           
 
Method Summary
 void destroy()
          
 void doFilter(javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, javax.servlet.FilterChain chain)
          
protected abstract  java.lang.String getMessageRelativeUrl(javax.servlet.http.HttpServletRequest request, java.lang.String strMessageKey, java.lang.Object[] messageArgs, java.lang.String strTitleKey)
          Forward the error message url depends site or admin implementation
 void init(javax.servlet.FilterConfig config)
          
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

SafeRequestFilter

public SafeRequestFilter()
Method Detail

init

public void init(javax.servlet.FilterConfig config)
          throws javax.servlet.ServletException

Specified by:
init in interface javax.servlet.Filter
Throws:
javax.servlet.ServletException

destroy

public void destroy()

Specified by:
destroy in interface javax.servlet.Filter

doFilter

public void doFilter(javax.servlet.ServletRequest request,
                     javax.servlet.ServletResponse response,
                     javax.servlet.FilterChain chain)
              throws java.io.IOException,
                     javax.servlet.ServletException

Specified by:
doFilter in interface javax.servlet.Filter
Throws:
java.io.IOException
javax.servlet.ServletException

getMessageRelativeUrl

protected abstract java.lang.String getMessageRelativeUrl(javax.servlet.http.HttpServletRequest request,
                                                          java.lang.String strMessageKey,
                                                          java.lang.Object[] messageArgs,
                                                          java.lang.String strTitleKey)
Forward the error message url depends site or admin implementation

Parameters:
request - @HttpServletRequest
strMessageKey - the message key
messageArgs - the message args
strTitleKey - the title of the message
Returns:
url


Copyright © 2012 Mairie de Paris. All Rights Reserved.