This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP Java HTML Sanitizer Project"
From OWASP
m (→Questions) |
m (→Creating a HTML Policy) |
||
Line 91: | Line 91: | ||
= Creating a HTML Policy = | = Creating a HTML Policy = | ||
− | You can use prepackaged policies here: [ | + | You can use prepackaged policies here: [https://github.com/OWASP/java-html-sanitizer/blob/master/src/main/java/org/owasp/html/Sanitizers.java https://github.com/OWASP/java-html-sanitizer/blob/master/src/main/java/org/owasp/html/Sanitizers.java]. |
PolicyFactory policy = Sanitizers.FORMATTING.and(Sanitizers.LINKS); | PolicyFactory policy = Sanitizers.FORMATTING.and(Sanitizers.LINKS); | ||
String safeHTML = policy.sanitize(untrustedHTML); | String safeHTML = policy.sanitize(untrustedHTML); | ||
− | or the tests show how to configure your own policy here: [ | + | or the tests show how to configure your own policy here: [https://github.com/OWASP/java-html-sanitizer/blob/master/src/test/java/org/owasp/html/HtmlPolicyBuilderTest.java https://github.com/OWASP/java-html-sanitizer/blob/master/src/test/java/org/owasp/html/HtmlPolicyBuilderTest.java] |
PolicyFactory policy = new HtmlPolicyBuilder() | PolicyFactory policy = new HtmlPolicyBuilder() |