Modifier and Type | Field | Description |
---|---|---|
static PolicyFactory |
Sanitizers.BLOCKS |
Allows common block elements including
<p> ,
<h1> , etc. |
static PolicyFactory |
Sanitizers.FORMATTING |
Allows common formatting elements including
<b> , <i> , etc. |
static PolicyFactory |
Sanitizers.IMAGES |
Allows
<img> elements from HTTP, HTTPS, and relative sources. |
static PolicyFactory |
Sanitizers.LINKS |
Allows HTTP, HTTPS, MAILTO, and relative links.
|
static PolicyFactory |
Sanitizers.STYLES |
Allows certain safe CSS properties in
style="..." attributes. |
static PolicyFactory |
Sanitizers.TABLES |
Allows common table elements.
|
Modifier and Type | Method | Description |
---|---|---|
PolicyFactory |
PolicyFactory.and(PolicyFactory f) |
Produces a factory that allows the union of the grants, and intersects
policies where they overlap on a particular granted attribute or element
name.
|
PolicyFactory |
HtmlPolicyBuilder.toFactory() |
Like
HtmlPolicyBuilder.build(org.owasp.html.HtmlStreamEventReceiver) but can be reused to create many different policies
each backed by a different output channel. |
Modifier and Type | Method | Description |
---|---|---|
PolicyFactory |
PolicyFactory.and(PolicyFactory f) |
Produces a factory that allows the union of the grants, and intersects
policies where they overlap on a particular granted attribute or element
name.
|
Copyright © 2019 OWASP. All rights reserved.