Package net.mingsoft.basic.filter
Class XSSEscapeFilter
java.lang.Object
net.mingsoft.basic.filter.XSSEscapeFilter
- All Implemented Interfaces:
jakarta.servlet.Filter
XSS 过滤器 用于请求参数的脚本数据
历史修订: 2022-1-24 把includes删除,改成excludes
-
Field Summary
Fields -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionvoiddestroy()voiddoFilter(jakarta.servlet.ServletRequest request, jakarta.servlet.ServletResponse response, jakarta.servlet.FilterChain filterChain) voidinit(jakarta.servlet.FilterConfig filterConfig) com.fasterxml.jackson.databind.ObjectMapperxssObjectMapper(org.springframework.http.converter.json.Jackson2ObjectMapperBuilder builder) 过滤json类型的
-
Field Details
-
includes
-
excludes
-
excludesField
-
-
Constructor Details
-
XSSEscapeFilter
public XSSEscapeFilter()
-
-
Method Details
-
doFilter
public void doFilter(jakarta.servlet.ServletRequest request, jakarta.servlet.ServletResponse response, jakarta.servlet.FilterChain filterChain) throws IOException, jakarta.servlet.ServletException - Specified by:
doFilterin interfacejakarta.servlet.Filter- Throws:
IOExceptionjakarta.servlet.ServletException
-
xssObjectMapper
@Bean @Primary public com.fasterxml.jackson.databind.ObjectMapper xssObjectMapper(org.springframework.http.converter.json.Jackson2ObjectMapperBuilder builder) 过滤json类型的- Parameters:
builder-- Returns:
-
init
public void init(jakarta.servlet.FilterConfig filterConfig) throws jakarta.servlet.ServletException - Specified by:
initin interfacejakarta.servlet.Filter- Throws:
jakarta.servlet.ServletException
-
destroy
public void destroy()- Specified by:
destroyin interfacejakarta.servlet.Filter
-