Package org.glassfish.web.util
Class HtmlEntityEncoder
- java.lang.Object
-
- org.glassfish.web.util.HtmlEntityEncoder
-
public class HtmlEntityEncoder extends Object
This class encodes HTML display content for preventing XSS.
-
-
Constructor Summary
Constructors Constructor Description HtmlEntityEncoder()
-
Method Summary
All Methods Static Methods Concrete Methods Modifier and Type Method Description static String
encodeXSS(Object obj)
static String
encodeXSS(String s)
Encode a) the following visible characters: " => 34, % => 37, & => 38, ' => 39, ( => 40, ) => 41, + => 43, ; => 59, < => 60, > => 62, b) ignore control characters c) ignore undefined characters
-