Class HTMLValidationRule

  • All Implemented Interfaces:
    ValidationRule

    public class HTMLValidationRule
    extends StringValidationRule
    A validator performs syntax and possibly semantic validation of a single piece of data from an untrusted source.
    Since:
    June 1, 2007
    Author:
    Jeff Williams (jeff.williams .at. aspectsecurity.com) Aspect Security
    See Also:
    Validator
    • Constructor Detail

      • HTMLValidationRule

        public HTMLValidationRule​(java.lang.String typeName)
      • HTMLValidationRule

        public HTMLValidationRule​(java.lang.String typeName,
                                  Encoder encoder)
      • HTMLValidationRule

        public HTMLValidationRule​(java.lang.String typeName,
                                  Encoder encoder,
                                  java.lang.String whitelistPattern)
    • Method Detail

      • sanitize

        public java.lang.String sanitize​(java.lang.String context,
                                         java.lang.String input)
        The method is similar to ValidationRuile.getSafe except that it returns a harmless object that may or may not have any similarity to the original input (in some cases you may not care). In most cases this should be the same as the getSafe method only instead of throwing an exception, return some default value.
        Overrides:
        sanitize in class StringValidationRule
        Returns:
        a parsed version of the input or a default value.