Modifier and Type | Constant Field | Value |
---|---|---|
public static final int |
COOKIE |
2 |
public static final String |
CSRF_TOKEN_NAME |
"ctoken" |
public static final String |
ESAPI_STATE |
"estate" |
public static final int |
HEADER |
1 |
public static final int |
MAX_COOKIE_LEN |
4096 |
public static final int |
MAX_COOKIE_PAIRS |
20 |
public static final int |
PARAMETER |
0 |
public static final String |
REMEMBER_TOKEN_COOKIE_NAME |
"rtoken" |
Modifier and Type | Constant Field | Value |
---|---|---|
public static final int |
ALL |
-2147483648 |
public static final int |
DEBUG |
200 |
public static final int |
ERROR |
800 |
public static final int |
FATAL |
1000 |
public static final int |
INFO |
400 |
public static final int |
OFF |
2147483647 |
public static final int |
TRACE |
100 |
public static final int |
WARNING |
600 |
Modifier and Type | Constant Field | Value |
---|---|---|
public static final String |
ABSOLUTE_TIMEOUT_DURATION |
"Authenticator.AbsoluteTimeoutDuration" |
public static final String |
ACCEPT_LENIENT_DATES |
"Validator.AcceptLenientDates" |
public static final String |
ACCESS_CONTROL_IMPLEMENTATION |
"ESAPI.AccessControl" |
public static final String |
ADDITIONAL_ALLOWED_CIPHER_MODES |
"Encryptor.cipher_modes.additional_allowed" |
public static final String |
ALLOW_MIXED_ENCODING |
"Encoder.AllowMixedEncoding" |
public static final String |
ALLOW_MULTIPLE_ENCODING |
"Encoder.AllowMultipleEncoding" |
public static final String |
ALLOWED_LOGIN_ATTEMPTS |
"Authenticator.AllowedLoginAttempts" |
public static final String |
APPLICATION_NAME |
"Logger.ApplicationName" |
public static final String |
APPROVED_EXECUTABLES |
"Executor.ApprovedExecutables" |
public static final String |
APPROVED_UPLOAD_EXTENSIONS |
"HttpUtilities.ApprovedUploadExtensions" |
public static final String |
AUTHENTICATION_IMPLEMENTATION |
"ESAPI.Authenticator" |
public static final String |
CANONICALIZATION_CODECS |
"Encoder.DefaultCodecList" |
public static final String |
CHARACTER_ENCODING |
"Encryptor.CharacterEncoding" |
public static final String |
CIPHER_TRANSFORMATION_IMPLEMENTATION |
"Encryptor.CipherTransformation" |
public static final String |
CIPHERTEXT_USE_MAC |
"Encryptor.CipherText.useMAC" |
public static final String |
COMBINED_CIPHER_MODES |
"Encryptor.cipher_modes.combined_modes" |
public static final String |
DEFAULT_ACCESS_CONTROL_IMPLEMENTATION |
"org.owasp.esapi.reference.DefaultAccessController" |
public static final String |
DEFAULT_AUTHENTICATION_IMPLEMENTATION |
"org.owasp.esapi.reference.FileBasedAuthenticator" |
public static final String |
DEFAULT_ENCODER_IMPLEMENTATION |
"org.owasp.esapi.reference.DefaultEncoder" |
public static final String |
DEFAULT_ENCRYPTION_IMPLEMENTATION |
"org.owasp.esapi.reference.crypto.JavaEncryptor" |
public static final String |
DEFAULT_EXECUTOR_IMPLEMENTATION |
"org.owasp.esapi.reference.DefaultExecutor" |
public static final String |
DEFAULT_HTTP_UTILITIES_IMPLEMENTATION |
"org.owasp.esapi.reference.DefaultHTTPUtilities" |
public static final String |
DEFAULT_INTRUSION_DETECTION_IMPLEMENTATION |
"org.owasp.esapi.reference.DefaultIntrusionDetector" |
public static final String |
DEFAULT_LOG_IMPLEMENTATION |
"org.owasp.esapi.logging.java.JavaLogFactory" |
public static final String |
DEFAULT_RANDOMIZER_IMPLEMENTATION |
"org.owasp.esapi.reference.DefaultRandomizer" |
public static final String |
DEFAULT_RESOURCE_FILE |
"ESAPI.properties" |
public static final String |
DEFAULT_VALIDATOR_IMPLEMENTATION |
"org.owasp.esapi.reference.DefaultValidator" |
public static final String |
DIGITAL_SIGNATURE_ALGORITHM |
"Encryptor.DigitalSignatureAlgorithm" |
public static final String |
DIGITAL_SIGNATURE_KEY_LENGTH |
"Encryptor.DigitalSignatureKeyLength" |
public static final String |
DISABLE_INTRUSION_DETECTION |
"IntrusionDetector.Disable" |
public static final String |
DISCARD_LOGSPECIAL |
"org.owasp.esapi.logSpecial.discard" |
public static final String |
ENCODER_IMPLEMENTATION |
"ESAPI.Encoder" |
public static final String |
ENCRYPTION_ALGORITHM |
"Encryptor.EncryptionAlgorithm" |
public static final String |
ENCRYPTION_IMPLEMENTATION |
"ESAPI.Encryptor" |
public static final String |
EXECUTOR_IMPLEMENTATION |
"ESAPI.Executor" |
public static final String |
FILEUPLOAD_ALLOW_ANONYMOUS_USERS |
"HttpUtilities.FileUploadAllowAnonymousUser" |
public static final String |
FORCE_HTTPONLYCOOKIES |
"HttpUtilities.ForceHttpOnlyCookies" |
public static final String |
FORCE_HTTPONLYSESSION |
"HttpUtilities.ForceHttpOnlySession" |
public static final String |
FORCE_SECURECOOKIES |
"HttpUtilities.ForceSecureCookies" |
public static final String |
FORCE_SECURESESSION |
"HttpUtilities.SecureSession" |
public static final String |
HASH_ALGORITHM |
"Encryptor.HashAlgorithm" |
public static final String |
HASH_ITERATIONS |
"Encryptor.HashIterations" |
public static final String |
HTTP_SESSION_ID_NAME |
"HttpUtilities.HttpSessionIdName" |
public static final String |
HTTP_UTILITIES_IMPLEMENTATION |
"ESAPI.HTTPUtilities" |
public static final String |
IDLE_TIMEOUT_DURATION |
"Authenticator.IdleTimeoutDuration" |
public static final String |
INTRUSION_DETECTION_IMPLEMENTATION |
"ESAPI.IntrusionDetector" |
public static final String |
IV_TYPE |
"Encryptor.ChooseIVMethod" |
public static final String |
KDF_PRF_ALG |
"Encryptor.KDF.PRF" |
public static final String |
KEY_LENGTH |
"Encryptor.EncryptionKeyLength" |
public static final String |
LOG_APPLICATION_NAME |
"Logger.LogApplicationName" |
public static final String |
LOG_CLIENT_INFO |
"Logger.ClientInfo" |
public static final String |
LOG_ENCODING_REQUIRED |
"Logger.LogEncodingRequired" |
public static final String |
LOG_IMPLEMENTATION |
"ESAPI.Logger" |
public static final String |
LOG_SERVER_IP |
"Logger.LogServerIP" |
public static final String |
LOG_USER_INFO |
"Logger.UserInfo" |
public static final String |
MASTER_KEY |
"Encryptor.MasterKey" |
public static final String |
MASTER_SALT |
"Encryptor.MasterSalt" |
public static final String |
MAX_HTTP_HEADER_SIZE |
"HttpUtilities.MaxHeaderSize" |
public static final String |
MAX_OLD_PASSWORD_HASHES |
"Authenticator.MaxOldPasswordHashes" |
public static final String |
MAX_UPLOAD_FILE_BYTES |
"HttpUtilities.MaxUploadFileBytes" |
public static final String |
MAX_UPLOAD_FILE_COUNT |
"HttpUtilities.MaxUploadFileCount" |
public static final String |
PASSWORD_PARAMETER_NAME |
"Authenticator.PasswordParameterName" |
public static final String |
PLAINTEXT_OVERWRITE |
"Encryptor.PlainText.overwrite" |
public static final String |
PREFERRED_JCE_PROVIDER |
"Encryptor.PreferredJCEProvider" |
public static final String |
PRINT_PROPERTIES_WHEN_LOADED |
"ESAPI.printProperties" |
public static final String |
RANDOM_ALGORITHM |
"Encryptor.RandomAlgorithm" |
public static final String |
RANDOMIZER_IMPLEMENTATION |
"ESAPI.Randomizer" |
public static final String |
REMEMBER_TOKEN_DURATION |
"Authenticator.RememberTokenDuration" |
public static final String |
RESPONSE_CONTENT_TYPE |
"HttpUtilities.ResponseContentType" |
public static final String |
UPLOAD_DIRECTORY |
"HttpUtilities.UploadDir" |
public static final String |
UPLOAD_TEMP_DIRECTORY |
"HttpUtilities.UploadTempDir" |
public static final String |
USERNAME_PARAMETER_NAME |
"Authenticator.UsernameParameterName" |
public static final String |
VALIDATION_PROPERTIES |
"Validator.ConfigurationFile" |
public static final String |
VALIDATION_PROPERTIES_MULTIVALUED |
"Validator.ConfigurationFile.MultiValued" |
public static final String |
VALIDATOR_HTML_VALIDATION_ACTION |
"Validator.HtmlValidationAction" |
public static final String |
VALIDATOR_HTML_VALIDATION_CONFIGURATION_FILE |
"Validator.HtmlValidationConfigurationFile" |
public static final String |
VALIDATOR_IMPLEMENTATION |
"ESAPI.Validator" |
public static final String |
WORKING_DIRECTORY |
"Executor.WorkingDirectory" |
Modifier and Type | Constant Field | Value |
---|---|---|
public static final int |
DECODE |
0 |
public static final int |
DONT_BREAK_LINES |
8 |
public static final String |
ENABLE_UNSAFE_SERIALIZATION |
"org.owasp.esapi.enableUnsafeSerialization" |
public static final int |
ENCODE |
1 |
public static final int |
GZIP |
2 |
public static final int |
NO_OPTIONS |
0 |
public static final int |
ORDERED |
32 |
public static final int |
URL_SAFE |
16 |
Modifier and Type | Constant Field | Value |
---|---|---|
public static final int |
ANSI_MODE |
1 |
public static final int |
MYSQL_MODE |
0 |
Modifier and Type | Constant Field | Value |
---|---|---|
public static final int |
cipherTextVersion |
20130830 |
Modifier and Type | Constant Field | Value |
---|---|---|
public static final int |
cipherTextSerializerVersion |
20130830 |
Modifier and Type | Constant Field | Value |
---|---|---|
public static final String |
ANONYMOUS_USER |
"<anonymous>" |
Modifier and Type | Constant Field | Value |
---|---|---|
public static final int |
kdfVersion |
20130830 |
public static final int |
originalVersion |
20110203 |
Modifier and Type | Constant Field | Value |
---|---|---|
protected static final long |
serialVersionUID |
1L |
Modifier and Type | Constant Field | Value |
---|---|---|
protected static final long |
serialVersionUID |
1L |
Modifier and Type | Constant Field | Value |
---|---|---|
protected static final long |
serialVersionUID |
1L |
Modifier and Type | Constant Field | Value |
---|---|---|
protected static final long |
serialVersionUID |
1L |
Modifier and Type | Constant Field | Value |
---|---|---|
protected static final long |
serialVersionUID |
1L |
Modifier and Type | Constant Field | Value |
---|---|---|
protected static final long |
serialVersionUID |
1L |
Modifier and Type | Constant Field | Value |
---|---|---|
protected static final String |
USER |
"ESAPIUserSessionKey" |
Modifier and Type | Constant Field | Value |
---|---|---|
public static final String |
ABSOLUTE_TIMEOUT_DURATION |
"Authenticator.AbsoluteTimeoutDuration" |
public static final String |
ACCEPT_LENIENT_DATES |
"Validator.AcceptLenientDates" |
public static final String |
ACCESS_CONTROL_IMPLEMENTATION |
"ESAPI.AccessControl" |
public static final String |
ADDITIONAL_ALLOWED_CIPHER_MODES |
"Encryptor.cipher_modes.additional_allowed" |
public static final String |
ALLOW_MIXED_ENCODING |
"Encoder.AllowMixedEncoding" |
public static final String |
ALLOW_MULTIPLE_ENCODING |
"Encoder.AllowMultipleEncoding" |
public static final String |
ALLOWED_LOGIN_ATTEMPTS |
"Authenticator.AllowedLoginAttempts" |
public static final String |
APPLICATION_NAME |
"Logger.ApplicationName" |
public static final String |
APPROVED_EXECUTABLES |
"Executor.ApprovedExecutables" |
public static final String |
APPROVED_UPLOAD_EXTENSIONS |
"HttpUtilities.ApprovedUploadExtensions" |
public static final String |
AUTHENTICATION_IMPLEMENTATION |
"ESAPI.Authenticator" |
public static final String |
CANONICALIZATION_CODECS |
"Encoder.DefaultCodecList" |
public static final String |
CHARACTER_ENCODING |
"Encryptor.CharacterEncoding" |
public static final String |
CIPHER_TRANSFORMATION_IMPLEMENTATION |
"Encryptor.CipherTransformation" |
public static final String |
CIPHERTEXT_USE_MAC |
"Encryptor.CipherText.useMAC" |
public static final String |
COMBINED_CIPHER_MODES |
"Encryptor.cipher_modes.combined_modes" |
public static final String |
DEFAULT_ACCESS_CONTROL_IMPLEMENTATION |
"org.owasp.esapi.reference.DefaultAccessController" |
public static final String |
DEFAULT_AUTHENTICATION_IMPLEMENTATION |
"org.owasp.esapi.reference.FileBasedAuthenticator" |
public static final String |
DEFAULT_ENCODER_IMPLEMENTATION |
"org.owasp.esapi.reference.DefaultEncoder" |
public static final String |
DEFAULT_ENCRYPTION_IMPLEMENTATION |
"org.owasp.esapi.reference.crypto.JavaEncryptor" |
public static final String |
DEFAULT_EXECUTOR_IMPLEMENTATION |
"org.owasp.esapi.reference.DefaultExecutor" |
public static final String |
DEFAULT_HTTP_UTILITIES_IMPLEMENTATION |
"org.owasp.esapi.reference.DefaultHTTPUtilities" |
public static final String |
DEFAULT_INTRUSION_DETECTION_IMPLEMENTATION |
"org.owasp.esapi.reference.DefaultIntrusionDetector" |
public static final String |
DEFAULT_LOG_IMPLEMENTATION |
"org.owasp.esapi.logging.java.JavaLogFactory" |
public static final String |
DEFAULT_RANDOMIZER_IMPLEMENTATION |
"org.owasp.esapi.reference.DefaultRandomizer" |
public static final String |
DEFAULT_RESOURCE_FILE |
"ESAPI.properties" |
public static final String |
DEFAULT_VALIDATOR_IMPLEMENTATION |
"org.owasp.esapi.reference.DefaultValidator" |
public static final String |
DIGITAL_SIGNATURE_ALGORITHM |
"Encryptor.DigitalSignatureAlgorithm" |
public static final String |
DIGITAL_SIGNATURE_KEY_LENGTH |
"Encryptor.DigitalSignatureKeyLength" |
public static final String |
DISABLE_INTRUSION_DETECTION |
"IntrusionDetector.Disable" |
public static final String |
DISCARD_LOGSPECIAL |
"org.owasp.esapi.logSpecial.discard" |
public static final String |
ENCODER_IMPLEMENTATION |
"ESAPI.Encoder" |
public static final String |
ENCRYPTION_ALGORITHM |
"Encryptor.EncryptionAlgorithm" |
public static final String |
ENCRYPTION_IMPLEMENTATION |
"ESAPI.Encryptor" |
public static final String |
EXECUTOR_IMPLEMENTATION |
"ESAPI.Executor" |
public static final String |
FORCE_HTTPONLYCOOKIES |
"HttpUtilities.ForceHttpOnlyCookies" |
public static final String |
FORCE_HTTPONLYSESSION |
"HttpUtilities.ForceHttpOnlySession" |
public static final String |
FORCE_SECURECOOKIES |
"HttpUtilities.ForceSecureCookies" |
public static final String |
FORCE_SECURESESSION |
"HttpUtilities.SecureSession" |
public static final String |
HASH_ALGORITHM |
"Encryptor.HashAlgorithm" |
public static final String |
HASH_ITERATIONS |
"Encryptor.HashIterations" |
public static final String |
HTTP_SESSION_ID_NAME |
"HttpUtilities.HttpSessionIdName" |
public static final String |
HTTP_UTILITIES_IMPLEMENTATION |
"ESAPI.HTTPUtilities" |
public static final String |
IDLE_TIMEOUT_DURATION |
"Authenticator.IdleTimeoutDuration" |
public static final String |
INTRUSION_DETECTION_IMPLEMENTATION |
"ESAPI.IntrusionDetector" |
public static final String |
IV_TYPE |
"Encryptor.ChooseIVMethod" |
public static final String |
KDF_PRF_ALG |
"Encryptor.KDF.PRF" |
public static final String |
KEY_LENGTH |
"Encryptor.EncryptionKeyLength" |
public static final String |
LOG_APPLICATION_NAME |
"Logger.LogApplicationName" |
public static final String |
LOG_CLIENT_INFO |
"Logger.ClientInfo" |
public static final String |
LOG_ENCODING_REQUIRED |
"Logger.LogEncodingRequired" |
public static final String |
LOG_IMPLEMENTATION |
"ESAPI.Logger" |
public static final String |
LOG_SERVER_IP |
"Logger.LogServerIP" |
public static final String |
LOG_USER_INFO |
"Logger.UserInfo" |
public static final String |
MASTER_KEY |
"Encryptor.MasterKey" |
public static final String |
MASTER_SALT |
"Encryptor.MasterSalt" |
public static final String |
MAX_HTTP_HEADER_SIZE |
"HttpUtilities.MaxHeaderSize" |
public static final String |
MAX_OLD_PASSWORD_HASHES |
"Authenticator.MaxOldPasswordHashes" |
protected final int |
MAX_REDIRECT_LOCATION |
1000 |
public static final String |
MAX_UPLOAD_FILE_BYTES |
"HttpUtilities.MaxUploadFileBytes" |
public static final String |
PASSWORD_PARAMETER_NAME |
"Authenticator.PasswordParameterName" |
public static final String |
PLAINTEXT_OVERWRITE |
"Encryptor.PlainText.overwrite" |
public static final String |
PREFERRED_JCE_PROVIDER |
"Encryptor.PreferredJCEProvider" |
public static final String |
PRINT_PROPERTIES_WHEN_LOADED |
"ESAPI.printProperties" |
public static final String |
RANDOM_ALGORITHM |
"Encryptor.RandomAlgorithm" |
public static final String |
RANDOMIZER_IMPLEMENTATION |
"ESAPI.Randomizer" |
public static final String |
REMEMBER_TOKEN_DURATION |
"Authenticator.RememberTokenDuration" |
public static final String |
RESPONSE_CONTENT_TYPE |
"HttpUtilities.ResponseContentType" |
public static final String |
UPLOAD_DIRECTORY |
"HttpUtilities.UploadDir" |
public static final String |
UPLOAD_TEMP_DIRECTORY |
"HttpUtilities.UploadTempDir" |
public static final String |
USERNAME_PARAMETER_NAME |
"Authenticator.UsernameParameterName" |
public static final String |
VALIDATION_PROPERTIES |
"Validator.ConfigurationFile" |
public static final String |
VALIDATION_PROPERTIES_MULTIVALUED |
"Validator.ConfigurationFile.MultiValued" |
public static final String |
VALIDATOR_HTML_VALIDATION_ACTION |
"Validator.HtmlValidationAction" |
public static final String |
VALIDATOR_HTML_VALIDATION_CONFIGURATION_FILE |
"Validator.HtmlValidationConfigurationFile" |
public static final String |
VALIDATOR_IMPLEMENTATION |
"ESAPI.Validator" |
public static final String |
WORKING_DIRECTORY |
"Executor.WorkingDirectory" |
Modifier and Type | Constant Field | Value |
---|---|---|
protected static final String |
CREDIT_CARD_VALIDATOR_KEY |
"CreditCard" |
Modifier and Type | Constant Field | Value |
---|---|---|
protected static final long |
serialVersionUID |
1L |
Modifier and Type | Constant Field | Value |
---|---|---|
public static final int |
BLOCK |
2 |
public static final String |
JAVASCRIPT_REDIRECT |
"<html><body><script>document.location=\'##1##\';</script></body></html>" |
public static final String |
JAVASCRIPT_TARGET_TOKEN |
"##1##" |
public static final int |
LOG |
0 |
public static final int |
OPERATOR_CONTAINS |
1 |
public static final int |
OPERATOR_EQ |
0 |
public static final int |
OPERATOR_EXISTS |
3 |
public static final int |
OPERATOR_IN_LIST |
2 |
public static final int |
REDIRECT |
1 |
Copyright © 2023 The Open Worldwide Application Security Project (OWASP). All rights reserved.