Skip navigation links
A B C D E F G H I L M N O P R S T U V X 

A

AbstractAntiSamyScanner - Class in org.owasp.validator.html.scan
 
AbstractAntiSamyScanner(Policy) - Constructor for class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 
AbstractAntiSamyScanner() - Constructor for class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 
ACTION_FILTER - Static variable in class org.owasp.validator.html.Policy
 
ACTION_TRUNCATE - Static variable in class org.owasp.validator.html.Policy
 
ACTION_VALIDATE - Static variable in class org.owasp.validator.html.Policy
 
addError(String, Object[]) - Method in class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 
ALLOW_DYNAMIC_ATTRIBUTES - Static variable in class org.owasp.validator.html.Policy
 
ANCHORS_NOFOLLOW - Static variable in class org.owasp.validator.html.Policy
 
ANCHORS_NOOPENER_NOREFERRER - Static variable in class org.owasp.validator.html.Policy
 
AntiSamy - Class in org.owasp.validator.html
This is the only class from which the outside world should be calling.
AntiSamy() - Constructor for class org.owasp.validator.html.AntiSamy
 
AntiSamy(Policy) - Constructor for class org.owasp.validator.html.AntiSamy
 
AntiSamyDOMScanner - Class in org.owasp.validator.html.scan
This is where the magic lives.
AntiSamyDOMScanner(Policy) - Constructor for class org.owasp.validator.html.scan.AntiSamyDOMScanner
 
AntiSamyDOMScanner() - Constructor for class org.owasp.validator.html.scan.AntiSamyDOMScanner
 
AntiSamyPattern - Class in org.owasp.validator.html.model
An extension of the Pattern with helper methods.
AntiSamyPattern(Pattern) - Constructor for class org.owasp.validator.html.model.AntiSamyPattern
Constructor for AntiSamyPattern.
AntiSamySAXScanner - Class in org.owasp.validator.html.scan
 
AntiSamySAXScanner(Policy) - Constructor for class org.owasp.validator.html.scan.AntiSamySAXScanner
 
ANYTHING_REGEXP - Static variable in class org.owasp.validator.html.Policy
 
ASHTMLSerializer - Class in org.owasp.validator.html.scan
 
ASHTMLSerializer(Writer, OutputFormat, InternalPolicy) - Constructor for class org.owasp.validator.html.scan.ASHTMLSerializer
 
ASXHTMLSerializer - Class in org.owasp.validator.html.scan
This is an extension of the default XHTMLSerializer class that's had it's endElementIO() method tweaked to serialize closing tags and self-closing tags the way we require.
ASXHTMLSerializer(Writer, OutputFormat, InternalPolicy) - Constructor for class org.owasp.validator.html.scan.ASXHTMLSerializer
 
Attribute - Class in org.owasp.validator.html.model
A model for HTML attributes and the "rules" they must follow (either literals or regular expressions) in order to be considered valid.
Attribute(String, List<Pattern>, List<String>, String, String) - Constructor for class org.owasp.validator.html.model.Attribute
 

B

BASIC_PARAM_TAG_RULE - Static variable in class org.owasp.validator.html.scan.Constants
 
big5CharsToEncode - Static variable in class org.owasp.validator.html.scan.Constants
 
big5CharsToEncodeSet - Static variable in class org.owasp.validator.html.scan.Constants
 

C

characters(XMLString, Augmentations) - Method in class org.owasp.validator.html.scan.MagicSAXFilter
 
CleanResults - Class in org.owasp.validator.html
This class contains the results of a scan.
CleanResults() - Constructor for class org.owasp.validator.html.CleanResults
 
CleanResults(long, String, DocumentFragment, List<String>) - Constructor for class org.owasp.validator.html.CleanResults
Create a clean set of results.
CleanResults(long, Callable<String>, DocumentFragment, List<String>) - Constructor for class org.owasp.validator.html.CleanResults
Create a clean set of results.
cloneWithDirective(String, String) - Method in class org.owasp.validator.html.Policy
Creates a copy of this policy with an added/changed directive.
comment(String) - Method in class org.owasp.validator.css.CssHandler
 
comment(XMLString, Augmentations) - Method in class org.owasp.validator.html.scan.MagicSAXFilter
 
CONNECTION_TIMEOUT - Static variable in class org.owasp.validator.html.Policy
 
Constants - Class in org.owasp.validator.html.scan
 
Constants() - Constructor for class org.owasp.validator.html.scan.Constants
 
containsAllowedValue(String) - Method in class org.owasp.validator.html.model.Attribute
 
CssHandler - Class in org.owasp.validator.css
A implementation of a SAC DocumentHandler for CSS validation.
CssHandler(Policy, LinkedList<URI>, List<String>, ResourceBundle) - Constructor for class org.owasp.validator.css.CssHandler
Deprecated.
The embeddedStyleSheets List parameter is removed in the newer version of this constructor as the handler has its own internal list that can be accessed through the getImportedStylesheetsURIList() method.
CssHandler(Policy, List<String>, ResourceBundle) - Constructor for class org.owasp.validator.css.CssHandler
Constructs a handler for stylesheets using the given policy.
CssHandler(Policy, List<String>, ResourceBundle, String) - Constructor for class org.owasp.validator.css.CssHandler
Constructs a handler for stylesheets using the given policy.
CssHandler(Policy, LinkedList<URI>, List<String>, String, ResourceBundle) - Constructor for class org.owasp.validator.css.CssHandler
Deprecated.
The embeddedStyleSheets List parameter is removed in the newer version of this constructor as the handler has its own internal list that can be accessed through the getImportedStylesheetsURIList() method.
CssParser - Class in org.owasp.validator.css
 
CssParser() - Constructor for class org.owasp.validator.css.CssParser
 
cssRules - Variable in class org.owasp.validator.html.Policy
 
CssScanner - Class in org.owasp.validator.css
Encapsulates the parsing and validation of a CSS stylesheet or inline declaration.
CssScanner(InternalPolicy, ResourceBundle) - Constructor for class org.owasp.validator.css.CssScanner
Constructs a scanner based on the given policy.
CssScanner(InternalPolicy, ResourceBundle, boolean) - Constructor for class org.owasp.validator.css.CssScanner
Constructs a scanner based on the given policy.
CssValidator - Class in org.owasp.validator.css
Encapsulates all the necessary operations for validating individual elements of a stylesheet (namely: selectors, conditions and properties).
CssValidator(Policy) - Constructor for class org.owasp.validator.css.CssValidator
Constructs a validator for CSS selectors, conditions and properties based on the given policy.

D

decode(String) - Static method in class org.owasp.validator.html.util.XMLUtil
Helper function for decode XML entities.
DEFAULT_ENCODING_ALGORITHM - Static variable in class org.owasp.validator.html.scan.Constants
 
DEFAULT_LOCALE_LANG - Static variable in class org.owasp.validator.html.scan.Constants
 
DEFAULT_LOCALE_LOC - Static variable in class org.owasp.validator.html.scan.Constants
 
DEFAULT_MAX_INPUT_SIZE - Static variable in class org.owasp.validator.html.Policy
 
DEFAULT_MAX_STYLESHEET_IMPORTS - Static variable in class org.owasp.validator.html.Policy
 
DEFAULT_POLICY_URI - Static variable in class org.owasp.validator.html.Policy
 
DEFAULT_TIMEOUT - Static variable in class org.owasp.validator.css.CssScanner
 
defaultAllowedEmptyTags - Static variable in class org.owasp.validator.html.scan.Constants
 
defaultRequireClosingTags - Static variable in class org.owasp.validator.html.scan.Constants
 
determineMaxInputSize() - Method in class org.owasp.validator.html.InternalPolicy
Returns the maximum input size.
directives - Variable in class org.owasp.validator.html.Policy
 
DISALLOW_DOCTYPE_DECL - Static variable in class org.owasp.validator.html.Policy
 
doctypeDecl(String, String, String, Augmentations) - Method in class org.owasp.validator.html.scan.MagicSAXFilter
 
DOM - Static variable in class org.owasp.validator.html.AntiSamy
 

E

EMBED_STYLESHEETS - Static variable in class org.owasp.validator.html.Policy
 
emptyElement(QName, XMLAttributes, Augmentations) - Method in class org.owasp.validator.html.scan.MagicSAXFilter
 
emptyStyleSheet() - Method in class org.owasp.validator.css.CssHandler
Empties the stylesheet buffer.
encode(String) - Static method in class org.owasp.validator.html.util.XMLUtil
 
endCDATA(Augmentations) - Method in class org.owasp.validator.html.scan.MagicSAXFilter
 
endDocument(InputSource) - Method in class org.owasp.validator.css.CssHandler
 
endElement(QName, Augmentations) - Method in class org.owasp.validator.html.scan.MagicSAXFilter
 
endElementIO(String, String, String) - Method in class org.owasp.validator.html.scan.ASHTMLSerializer
 
endElementIO(String, String, String) - Method in class org.owasp.validator.html.scan.ASXHTMLSerializer
 
endFontFace() - Method in class org.owasp.validator.css.CssHandler
 
endMedia(SACMediaList) - Method in class org.owasp.validator.css.CssHandler
 
endPage(String, String) - Method in class org.owasp.validator.css.CssHandler
 
endSelector(SelectorList) - Method in class org.owasp.validator.css.CssHandler
 
ENTITY_ENCODE_INTL_CHARS - Static variable in class org.owasp.validator.html.Policy
 
ERROR_ATTRIBUTE_CAUSE_ENCODE - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_ATTRIBUTE_CAUSE_FILTER - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_ATTRIBUTE_INVALID - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_ATTRIBUTE_INVALID_FILTERED - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_ATTRIBUTE_INVALID_REMOVED - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_ATTRIBUTE_NOT_IN_POLICY - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_CDATA_FOUND - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_COMMENT_REMOVED - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_CSS_ATTRIBUTE_MALFORMED - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_CSS_IMPORT_DISABLED - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_CSS_IMPORT_EXCEEDED - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_CSS_IMPORT_FAILURE - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_CSS_IMPORT_INPUT_SIZE - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_CSS_IMPORT_URL_INVALID - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_CSS_TAG_MALFORMED - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_CSS_TAG_PROPERTY_INVALID - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_CSS_TAG_RELATIVE - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_CSS_TAG_RULE_NOTFOUND - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_CSS_TAG_SELECTOR_DISALLOWED - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_CSS_TAG_SELECTOR_NOTFOUND - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_INPUT_SIZE - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_PI_FOUND - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_STYLESHEET_NOT_ALLOWED - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_STYLESHEET_PROPERTY_INVALID - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_STYLESHEET_RELATIVE - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_STYLESHEET_RULE_NOTFOUND - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_STYLESHEET_SELECTOR_DISALLOWED - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_STYLESHEET_SELECTOR_NOTFOUND - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_TAG_DISALLOWED - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_TAG_EMPTY - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_TAG_ENCODED - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_TAG_FILTERED - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
ERROR_TAG_NOT_IN_POLICY - Static variable in class org.owasp.validator.html.util.ErrorMessageUtil
 
errorMessages - Variable in class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 
ErrorMessageUtil - Class in org.owasp.validator.html.util
 
escapeURI(String) - Method in class org.owasp.validator.html.scan.ASHTMLSerializer
 
EXTERNAL_GENERAL_ENTITIES - Static variable in class org.owasp.validator.html.Policy
 
EXTERNAL_PARAM_ENTITIES - Static variable in class org.owasp.validator.html.Policy
 

F

FORMAT_OUTPUT - Static variable in class org.owasp.validator.html.Policy
 

G

getAction() - Method in class org.owasp.validator.html.model.Tag
 
getAllowedEmptyTags() - Method in class org.owasp.validator.html.Policy
Return all the allowed empty tags configured in the Policy.
getAllowedRegExp() - Method in class org.owasp.validator.html.model.Property
Return a List of allowed regular expressions
getAllowedValues() - Method in class org.owasp.validator.html.model.Property
Return a List of allowed literal values
getAttributeByName(String) - Method in class org.owasp.validator.html.model.Tag
Returns an Attribute associated with a lookup name.
getAttributeValue(Element, String) - Static method in class org.owasp.validator.html.util.XMLUtil
Helper function for quickly retrieving an attribute from a given element.
getBooleanValue(Element, String) - Static method in class org.owasp.validator.html.util.XMLUtil
Helper function for quickly retrieving an boolean value of a given XML element.
getBooleanValue(Element, String, boolean) - Static method in class org.owasp.validator.html.util.XMLUtil
Helper function for quickly retrieving an boolean value of a given XML element, with a default initialization value passed in a parameter.
getCleanHTML() - Method in class org.owasp.validator.html.CleanResults
Return the filtered HTML as a String.
getCleanStylesheet() - Method in class org.owasp.validator.css.CssHandler
Returns the cleaned stylesheet.
getCleanXMLDocumentFragment() - Method in class org.owasp.validator.html.CleanResults
Return the DOM version of the clean HTML.
getCommonRegularExpressions(String) - Method in class org.owasp.validator.html.Policy
 
getDirective(String) - Method in class org.owasp.validator.html.Policy
Return a directive value based on a lookup name.
getDynamicAttributeByName(String) - Method in class org.owasp.validator.html.Policy
A method for returning one of the dynamic <global-attribute> entries by name.
getEmbedTag() - Method in class org.owasp.validator.html.InternalPolicy
 
getEntityRef(int) - Method in class org.owasp.validator.html.scan.ASHTMLSerializer
 
getEntityRef(int) - Method in class org.owasp.validator.html.scan.ASXHTMLSerializer
 
getErrorMessages() - Method in class org.owasp.validator.css.CssHandler
Returns the error messages generated during parsing.
getErrorMessages() - Method in class org.owasp.validator.html.CleanResults
Return a list of error messages -- but an empty list returned does not mean there was no attack present, due to the serialization and deserialization process automatically cleaning up some attacks.
getErrorMessages() - Method in class org.owasp.validator.html.scan.MagicSAXFilter
 
getGlobalAttributeByName(String) - Method in class org.owasp.validator.html.Policy
A simple method for returning on of the <global-attribute> entries by name.
getHTMLSerializer(Writer, OutputFormat) - Method in class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 
getImportedStylesheetsURIList() - Method in class org.owasp.validator.css.CssHandler
Returns a list of imported stylesheets from the main parsed stylesheet.
getInstance() - Static method in class org.owasp.validator.html.Policy
Construct a Policy using the default policy file location ("antisamy.xml").
getInstance(String) - Static method in class org.owasp.validator.html.Policy
Construct a Policy based on the file whose name is passed in.
getInstance(InputStream) - Static method in class org.owasp.validator.html.Policy
Construct a Policy from the InputStream object passed in.
getInstance(File) - Static method in class org.owasp.validator.html.Policy
Construct a Policy from the File object passed in.
getInstance(URL) - Static method in class org.owasp.validator.html.Policy
Construct a Policy from the target of the URL passed in.
getIntValue(Element, String, int) - Static method in class org.owasp.validator.html.util.XMLUtil
Helper function for quickly retrieving an integer value of a given XML element.
getMaxInputSize() - Method in class org.owasp.validator.html.InternalPolicy
 
getMessage(ResourceBundle, String, Object[]) - Static method in class org.owasp.validator.html.util.ErrorMessageUtil
 
getName() - Method in class org.owasp.validator.html.model.Attribute
 
getName() - Method in class org.owasp.validator.html.model.Property
Get the name of the property.
getName() - Method in class org.owasp.validator.html.model.Tag
 
getNumberOfErrors() - Method in class org.owasp.validator.html.CleanResults
Return the number of errors encountered during filtering.
getOnInvalid() - Method in class org.owasp.validator.html.model.Attribute
 
getOnUnknownTag() - Method in class org.owasp.validator.html.InternalPolicy
 
getOutputFormat() - Method in class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 
getParseContext(Element, URL) - Static method in class org.owasp.validator.html.Policy
 
getPattern() - Method in class org.owasp.validator.html.model.AntiSamyPattern
 
getPropertyByName(String) - Method in class org.owasp.validator.html.Policy
Retrieves a CSS Property from the Policy.
getRegularExpression() - Method in class org.owasp.validator.html.model.Tag
Returns a regular expression for validating individual tags.
getRequiresClosingTags() - Method in class org.owasp.validator.html.Policy
Return all the tags that are required to be closed with an end tag, even if they have no child content.
getResults() - Method in class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 
getResults() - Method in class org.owasp.validator.html.scan.AntiSamyDOMScanner
 
getResults() - Method in class org.owasp.validator.html.scan.AntiSamySAXScanner
 
getScanTime() - Method in class org.owasp.validator.html.CleanResults
Return the time elapsed during the scan.
getSchemaValidation() - Static method in class org.owasp.validator.html.Policy
Deprecated.
Temporary method to enable AntiSamy users to upgrade to 1.6.x while still using policy files that aren't schema compliant. AntiSamy plans to make schema validation mandatory starting with v1.7.0 (~mid/late 2022).
getSelectorName() - Method in exception org.owasp.validator.css.UnknownSelectorException
 
getShorthandRefs() - Method in class org.owasp.validator.html.model.Property
Return a List of allowed shorthand references
getSimpleParseContext(Element) - Static method in class org.owasp.validator.html.Policy
 
getSourceFromUrl(URL) - Static method in class org.owasp.validator.html.Policy
 
getStartOfScan() - Method in class org.owasp.validator.html.CleanResults
Get the time the scan started.
getStyleTag() - Method in class org.owasp.validator.html.InternalPolicy
 
getTagByLowercaseName(String) - Method in class org.owasp.validator.html.Policy
Get the Tag specified by the provided tag name.
getTextValue(Element, String) - Static method in class org.owasp.validator.html.util.XMLUtil
Helper function for quickly retrieving a String value of a given XML element.
getTopLevelElement(URL) - Static method in class org.owasp.validator.html.Policy
 
getTopLevelElement(InputSource, Callable<InputSource>) - Static method in class org.owasp.validator.html.Policy
 

H

htmlEntityEncode(String) - Static method in class org.owasp.validator.html.util.HTMLEntityEncoder
A helper method for HTML entity-encoding a String value.
HTMLEntityEncoder - Class in org.owasp.validator.html.util
 
HTMLEntityEncoder() - Constructor for class org.owasp.validator.html.util.HTMLEntityEncoder
 

I

ignorableAtRule(String) - Method in class org.owasp.validator.css.CssHandler
 
importStyle(String, SACMediaList, String) - Method in class org.owasp.validator.css.CssHandler
 
InternalPolicy - Class in org.owasp.validator.html
Contains a bunch of optimized lookups over the regular Policy Class.
InternalPolicy(Policy.ParseContext) - Constructor for class org.owasp.validator.html.InternalPolicy
 
InternalPolicy(Policy, Map<String, String>, Map<String, Tag>, Map<String, Property>) - Constructor for class org.owasp.validator.html.InternalPolicy
 
isAction(String) - Method in class org.owasp.validator.html.model.Tag
Indicates if the action for this tag matches the supplied action
isAllowDynamicAttributes() - Method in class org.owasp.validator.html.InternalPolicy
 
isEmbedStyleSheets() - Method in class org.owasp.validator.html.InternalPolicy
 
isEncodeUnknownTag() - Method in class org.owasp.validator.html.InternalPolicy
 
isEntityEncodeIntlCharacters() - Method in class org.owasp.validator.html.InternalPolicy
 
isFormatOutput() - Method in class org.owasp.validator.html.InternalPolicy
 
isNofollowAnchors() - Method in class org.owasp.validator.html.InternalPolicy
 
isNofollowAnchors - Variable in class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 
isNoopenerAndNoreferrerAnchors() - Method in class org.owasp.validator.html.InternalPolicy
 
isNoopenerAndNoreferrerAnchors - Variable in class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 
isOmitDoctypeDeclaration() - Method in class org.owasp.validator.html.InternalPolicy
 
isOmitXmlDeclaration() - Method in class org.owasp.validator.html.InternalPolicy
 
isPreserveComments() - Method in class org.owasp.validator.html.InternalPolicy
 
isPreserveSpace() - Method in class org.owasp.validator.html.InternalPolicy
 
isUseXhtml() - Method in class org.owasp.validator.html.InternalPolicy
 
isValidateParamAsEmbed() - Method in class org.owasp.validator.html.InternalPolicy
 
isValidateParamAsEmbed - Variable in class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 
isValidCondition(String, Condition) - Method in class org.owasp.validator.css.CssValidator
Determines whether the given condition is valid according to this validator's policy.
isValidProperty(String, LexicalUnit) - Method in class org.owasp.validator.css.CssValidator
Determines whether the given property (both name and value) are valid according to this validator's policy.
isValidSelector(String, Selector) - Method in class org.owasp.validator.css.CssValidator
Determines whether the given selector name is valid according to this validator's policy.

L

lexicalValueToString(LexicalUnit) - Method in class org.owasp.validator.css.CssValidator
Converts the given lexical unit to a String representation.
LOAD_EXTERNAL_DTD - Static variable in class org.owasp.validator.html.Policy
 
locale - Variable in class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 
logger - Static variable in class org.owasp.validator.html.Policy
 

M

MagicSAXFilter - Class in org.owasp.validator.html.scan
Implementation of an HTML-filter that adheres to an AntiSamy policy.
MagicSAXFilter(ResourceBundle) - Constructor for class org.owasp.validator.html.scan.MagicSAXFilter
 
matcher(CharSequence) - Method in class org.owasp.validator.html.model.AntiSamyPattern
 
matcherRegEx(boolean) - Method in class org.owasp.validator.html.model.Attribute
 
matches(String) - Method in class org.owasp.validator.html.model.AntiSamyPattern
 
matches(String) - Method in class org.owasp.validator.html.TagMatcher
Examines if this tag matches the values in this matcher.
matchesAllowedExpression(String) - Method in class org.owasp.validator.html.model.Attribute
 
mergeRelValuesInAnchor(boolean, boolean, String) - Static method in class org.owasp.validator.html.model.Attribute
This method takes the current rel attribute values and, depending on which ones to add, appends the corresponding values if they are not already present.
messages - Static variable in class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 
mutate(String, String) - Method in class org.owasp.validator.html.model.Attribute
 
mutateAction(String) - Method in class org.owasp.validator.html.model.Tag
 

N

namespaceDeclaration(String, String) - Method in class org.owasp.validator.css.CssHandler
 
normalize(String) - Static method in class org.owasp.validator.html.util.URIUtils
This method removes "." or ".." from absolute URL.

O

OMIT_DOCTYPE_DECLARATION - Static variable in class org.owasp.validator.html.Policy
 
OMIT_XML_DECLARATION - Static variable in class org.owasp.validator.html.Policy
 
org.owasp.validator.css - package org.owasp.validator.css
 
org.owasp.validator.html - package org.owasp.validator.html
 
org.owasp.validator.html.model - package org.owasp.validator.html.model
 
org.owasp.validator.html.scan - package org.owasp.validator.html.scan
 
org.owasp.validator.html.util - package org.owasp.validator.html.util
 

P

ParseContext() - Constructor for class org.owasp.validator.html.Policy.ParseContext
 
parseStyleDeclaration(boolean) - Method in class org.owasp.validator.css.CssParser
This implementation is a workaround to solve leading dash errors on property names.
Policy - Class in org.owasp.validator.html
Policy.java - This file holds the model for our policy engine.
Policy(Policy.ParseContext) - Constructor for class org.owasp.validator.html.Policy
 
Policy(Policy, Map<String, String>, Map<String, Tag>, Map<String, Property>) - Constructor for class org.owasp.validator.html.Policy
 
policy - Variable in class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 
Policy.ParseContext - Class in org.owasp.validator.html
 
PolicyException - Exception in org.owasp.validator.html
This exception gets thrown when there is a problem validating or parsing the policy file.
PolicyException(Exception) - Constructor for exception org.owasp.validator.html.PolicyException
 
PolicyException(String) - Constructor for exception org.owasp.validator.html.PolicyException
 
PRESERVE_COMMENTS - Static variable in class org.owasp.validator.html.Policy
 
PRESERVE_SPACE - Static variable in class org.owasp.validator.html.Policy
 
processingInstruction(String, XMLString, Augmentations) - Method in class org.owasp.validator.html.scan.MagicSAXFilter
 
property(String, LexicalUnit, boolean) - Method in class org.owasp.validator.css.CssHandler
 
Property - Class in org.owasp.validator.html.model
A model for CSS properties and the "rules" they must follow (either literals or regular expressions) in order to be considered valid.
Property(String, List<Pattern>, List<String>, List<String>, String, String) - Constructor for class org.owasp.validator.html.model.Property
 

R

reset(InternalPolicy) - Method in class org.owasp.validator.html.scan.MagicSAXFilter
 
resetParamsWhereLastConfigWins() - Method in class org.owasp.validator.html.Policy.ParseContext
 
resolveAsString(String, String) - Static method in class org.owasp.validator.html.util.URIUtils
 
resolveEntity(String, URL) - Static method in class org.owasp.validator.html.Policy
Resolves public and system IDs to files stored within the JAR.

S

SAX - Static variable in class org.owasp.validator.html.AntiSamy
 
scan(String) - Method in class org.owasp.validator.html.AntiSamy
The meat and potatoes.
scan(String, int) - Method in class org.owasp.validator.html.AntiSamy
This method sets scan() to use the specified scan type.
scan(String, Policy) - Method in class org.owasp.validator.html.AntiSamy
This method wraps scan() using the Policy object passed in.
scan(String, Policy, int) - Method in class org.owasp.validator.html.AntiSamy
This method wraps scan() using the Policy object passed in and the specified scan type.
scan(Reader, Writer, Policy) - Method in class org.owasp.validator.html.AntiSamy
Use this method if caller has Streams rather than Strings for I/O Useful for servlets where the response is very large and we don't validate, simply encode as bytes are consumed from the stream.
scan(String, String) - Method in class org.owasp.validator.html.AntiSamy
This method wraps scan() using the Policy in the specified file.
scan(String, File) - Method in class org.owasp.validator.html.AntiSamy
This method wraps scan() using the policy File object passed in.
scan(String) - Method in class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 
scan(String) - Method in class org.owasp.validator.html.scan.AntiSamyDOMScanner
This is where the magic lives.
scan(String) - Method in class org.owasp.validator.html.scan.AntiSamySAXScanner
 
scan(String, Policy) - Method in class org.owasp.validator.html.scan.AntiSamySAXScanner
 
scan(Reader, Writer) - Method in class org.owasp.validator.html.scan.AntiSamySAXScanner
Using a SAX parser, can pass Streams for input and output.
ScanException - Exception in org.owasp.validator.html
This exception gets thrown when there is an unexpected error parsing the tainted HTML.
ScanException(Exception) - Constructor for exception org.owasp.validator.html.ScanException
 
ScanException(String) - Constructor for exception org.owasp.validator.html.ScanException
 
scanInlineStyle(String, String, int) - Method in class org.owasp.validator.css.CssScanner
Scans the contents of an inline style declaration (ex.
scanStyleSheet(String, int) - Method in class org.owasp.validator.css.CssScanner
Scans the contents of a full stylesheet (ex.
setSchemaValidation(boolean) - Static method in class org.owasp.validator.html.Policy
Deprecated.
Temporary method to enable AntiSamy users to upgrade to 1.6.x while still using policy files that aren't schema compliant. AntiSamy plans to make schema validation mandatory starting with v1.7.0 (~mid/late 2022).
size() - Method in class org.owasp.validator.html.TagMatcher
 
startCDATA(Augmentations) - Method in class org.owasp.validator.html.scan.MagicSAXFilter
 
startDocument(InputSource) - Method in class org.owasp.validator.css.CssHandler
 
startElement(QName, XMLAttributes, Augmentations) - Method in class org.owasp.validator.html.scan.MagicSAXFilter
 
startFontFace() - Method in class org.owasp.validator.css.CssHandler
 
startMedia(SACMediaList) - Method in class org.owasp.validator.css.CssHandler
 
startPage(String, String) - Method in class org.owasp.validator.css.CssHandler
 
startSelector(SelectorList) - Method in class org.owasp.validator.css.CssHandler
 

T

Tag - Class in org.owasp.validator.html.model
A model for HTML "tags" and the rules dictating their validation/filtration.
Tag(String, Map<String, Attribute>, String) - Constructor for class org.owasp.validator.html.model.Tag
 
TagMatcher - Class in org.owasp.validator.html
Uses smart matching to match tags
TagMatcher(Iterable<String>) - Constructor for class org.owasp.validator.html.TagMatcher
 
tagRules - Variable in class org.owasp.validator.html.Policy
 
trim(String, String) - Method in class org.owasp.validator.html.scan.AbstractAntiSamyScanner
 

U

UnknownSelectorException - Exception in org.owasp.validator.css
 
UnknownSelectorException(String) - Constructor for exception org.owasp.validator.css.UnknownSelectorException
 
URIUtils - Class in org.owasp.validator.html.util
A utility class for URI handling
URIUtils() - Constructor for class org.owasp.validator.html.util.URIUtils
 
USE_XHTML - Static variable in class org.owasp.validator.html.Policy
 

V

VALIDATE_PARAM_AS_EMBED - Static variable in class org.owasp.validator.html.Policy
 
VALIDATIONPROPERTY - Static variable in class org.owasp.validator.html.Policy
 

X

XMLUtil - Class in org.owasp.validator.html.util
 
XMLUtil() - Constructor for class org.owasp.validator.html.util.XMLUtil
 
A B C D E F G H I L M N O P R S T U V X 
Skip navigation links

Copyright © 2022. All rights reserved.