This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

Talk:How to add validation logic to HttpServletRequest

Jump to: navigation, search


Reviewed and released Stephendv 09:27, 14 January 2008 (EST)


  • Stephen de Vries

General Discussion

I'm wondering if the ValidatingHttpRequest code provided was tested, or provided more as pseudo-code. The issue I'm having is that validate throws ValidationException. Hence getParameter() and all other overridden methods that call validate() will need to catch the exception (can't be thrown). What can be done with that exception? Also, when the exception is thrown, what should be returned?