Package org.owasp.html

Class Encoding

java.lang.Object

org.owasp.html.Encoding

public final class Encoding
extends Object

Encoders and decoders for HTML.

Constructor Summary

Constructors

Constructor	Description
Encoding()

Method Summary

Modifier and Type	Method	Description
static String	decodeHtml(String s)	Deprecated. specify whether s is in an attribute value
static String	decodeHtml(String s, boolean inAttribute)	Decodes HTML entities to produce a string containing only valid Unicode scalar values.
static void	encodeRcdataOnto(String plainText, Appendable output)	Appends an encoded form of plainText to putput where the encoding is sufficient to prevent an HTML parser from transitioning out of the RCDATA state.

Methods inherited from class java.lang.Object

equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

Encoding

public Encoding()

Method Detail

decodeHtml

public static String decodeHtml(String s)

Deprecated.

specify whether s is in an attribute value

Decodes HTML entities to produce a string containing only valid Unicode scalar values.

Parameters:

s - text/html

Returns:

text/plain

decodeHtml

public static String decodeHtml(String s,
                                boolean inAttribute)

Decodes HTML entities to produce a string containing only valid Unicode scalar values.

Parameters:

s - text/html

inAttribute - is s in an attribute value?

Returns:

text/plain

encodeRcdataOnto

public static void encodeRcdataOnto(String plainText,
                                    Appendable output)
                             throws IOException

Appends an encoded form of plainText to putput where the encoding is sufficient to prevent an HTML parser from transitioning out of the RCDATA state. This is suitable for encoding a text node inside a <textarea> or <title> element outside foreign content.

Parameters:

plainText - text/plain

output - a buffer of text/html that has a well-formed HTML prefix that would leave an HTML parser in the Data state if it were to encounter a space character as the next character. In practice this means that the buffer does not contain partial tags or comments, and the most recently opened element is `` or `<title>` and that element is still open.</dd> <dt><span class="throwsLabel">Throws:</span></dt> <dd><code><a href="https://docs.oracle.com/javase/6/docs/api/java/io/IOException.html?is-external=true" title="class or interface in java.io" class="externalLink">IOException</a></code></dd> </dl> </li> </ul> </li> </ul> </section> </li> </ul> </div> </div> </main> <!-- ========= END OF CLASS DATA ========= --> <footer role="contentinfo"> <nav role="navigation"> <!-- ======= START OF BOTTOM NAVBAR ====== --> <div class="bottomNav"><a id="navbar.bottom"> <!-- --> </a> <div class="skipNav"><a href="#skip.navbar.bottom" title="Skip navigation links">Skip navigation links</a></div> <a id="navbar.bottom.firstrow"> <!-- --> </a> <ul class="navList" title="Navigation"> <li><a href="../../../index.html">Overview</a></li> <li><a href="package-summary.html">Package</a></li> <li class="navBarCell1Rev">Class</li> <li><a href="class-use/Encoding.html">Use</a></li> <li><a href="package-tree.html">Tree</a></li> <li><a href="../../../deprecated-list.html">Deprecated</a></li> <li><a href="../../../index-all.html">Index</a></li> </ul> </div> <div class="subNav"> <ul class="navList" id="allclasses_navbar_bottom"> <li><a href="../../../allclasses.html">All Classes</a></li> </ul> <div> <script type="text/javascript"><!-- allClassesLink = document.getElementById("allclasses_navbar_bottom"); if(window==top) { allClassesLink.style.display = "block"; } else { allClassesLink.style.display = "none"; } //--> </script> <noscript> <div>JavaScript is disabled on your browser.</div> </noscript> </div> <div> <ul class="subNavList"> <li>Summary: </li> <li>Nested | </li> <li>Field | </li> <li><a href="#constructor.summary">Constr</a> | </li> <li><a href="#method.summary">Method</a></li> </ul> <ul class="subNavList"> <li>Detail: </li> <li>Field | </li> <li><a href="#constructor.detail">Constr</a> | </li> <li><a href="#method.detail">Method</a></li> </ul> </div> <a id="skip.navbar.bottom"> <!-- --> </a></div> <!-- ======== END OF BOTTOM NAVBAR ======= --> </nav> <p class="legalCopy"><small>Copyright © 2022 <a href="https://owasp.org">OWASP</a>. All rights reserved.</small></p> </footer> </body> </html>