Package de.hybris.platform.security.impl
Class DefaultXssEncodeService
java.lang.Object
de.hybris.platform.security.impl.DefaultXssEncodeService
- All Implemented Interfaces:
XssEncodeService
Default implementation of
XssEncodeService-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionencodeHtml(String input) Encodes input HTML to be XSS-safe code
-
Constructor Details
-
DefaultXssEncodeService
public DefaultXssEncodeService()
-
-
Method Details
-
encodeHtml
Description copied from interface:XssEncodeServiceEncodes input HTML to be XSS-safe code- Specified by:
encodeHtmlin interfaceXssEncodeService- Parameters:
input- untrusted HTML-string to clear it- Returns:
- a safe (w/o potential XSS vulnerabilities) representation of the HTML
-