XssClearHandler (codeupsoft-interceptor-xss 1.0.2 API)

java.lang.Object

com.codeupsoft.interceptor.xss.handler.XssClearHandler

public class XssClearHandler extends Object

XSS清理处理器.

负责对字符串进行XSS清理处理.

Author:: codeupsoft

Constructor Summary

Constructors

Constructor

Description

XssClearHandler()
Method Summary

Modifier and Type

Method

Description

String

clearXss(String value)

清理XSS攻击代码.

String

reply(String value)

回复特殊字符.

String

restoreData(String value)

恢复数据.

Methods inherited from class Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- XssClearHandler
  
  public XssClearHandler()
Method Details
- clearXss
  
  public String clearXss(String value)
  
  清理XSS攻击代码.
  对输入的字符串进行HTML转义，以防止XSS攻击.
  
  Parameters:
  
  value - 需要清理的原始字符串
  
  Returns:
  
  清理后的安全字符串
- reply
  
  public String reply(String value)
  
  回复特殊字符.
  将HTML转义后的字符串中的&符号还原为&，以便于JSON等格式的数据处理.
  
  Parameters:
  
  value - 经过HTML转义的字符串
  
  Returns:
  
  还原后的字符串
- restoreData
  
  public String restoreData(String value)
  
  恢复数据.
  对经过HTML转义的字符串进行反向操作，恢复成原始字符串.
  
  Parameters:
  
  value - 经过HTML转义的字符串
  
  Returns:
  
  原始字符串