Package fr.gouv.vitam.common.security
Class SanityChecker
- java.lang.Object
-
- fr.gouv.vitam.common.security.SanityChecker
-
public class SanityChecker extends java.lang.ObjectChecker for Sanity of XML and Json
Json : check if json is not exceed the limit size, if json does not contain script tag
XML: check if XML file is not exceed the limit size, and it does not contain CDATA, ENTITY or SCRIPT tag
-
-
Field Summary
Fields Modifier and Type Field Description static java.lang.StringHTTP_PARAMETER_VALUEstatic java.lang.StringHTTP_PERSISTENT_ID_PARAMETER_VALUE
-
Method Summary
All Methods Static Methods Concrete Methods Modifier and Type Method Description static voidcheckHeaders(javax.ws.rs.core.HttpHeaders headers)checkHeaders : Check sanity of Headers: no javascript/xml tag, neither html tagstatic voidcheckHeadersMap(javax.ws.rs.core.MultivaluedMap<java.lang.String,java.lang.String> requestHeaders)Checks sanity of Headers: no javascript/xml tag, neither html tagstatic voidcheckHTMLFile(java.io.File file)checkHTMLFile : Check if the file contains HTML contentstatic voidcheckJsonAll(com.fasterxml.jackson.databind.JsonNode json)checkJsonAll : Check sanity of json : size, invalid tagstatic voidcheckJsonAll(java.lang.String json)checkJsonAll : Check sanity of json : size, invalid tagprotected static voidcheckJsonSanity(com.fasterxml.jackson.databind.JsonNode json)checkJsonSanity : check sanity of json and find invalid keystatic voidcheckParameter(java.lang.String... params)checkParameter : Check sanity of String: no javascript/xml tag, neither html tagstatic voidcheckUriParametersMap(javax.ws.rs.core.MultivaluedMap<java.lang.String,java.lang.String> uriParameters)Checks sanity of Headers: no javascript/xml tag, neither html tagstatic voidcheckXmlAll(java.io.File xmlFile)checkXMLAll : check xml sanity all aspect : size, tag size, invalid tagprotected static voidcheckXmlSanityFileSize(java.io.File xmlFile)CheckXMLSanityFileSize : check size of xml fileprotected static voidcheckXmlSanityTags(java.io.File xmlFile)CheckXMLSanityTags : check invalid tag contains of a xml fileprotected static voidcheckXmlSanityTagValueSize(java.io.File xmlFile)check XML Sanity Tag and Value Sizestatic intgetLimitFieldSize()static longgetLimitFileSize()static longgetLimitJsonSize()static intgetLimitParamSize()static java.lang.StringsanitizeJson(com.fasterxml.jackson.databind.JsonNode json)Sabitize the jsonstatic voidsetLimitFieldSize(int limitFieldSize)static voidsetLimitFileSize(long limitFileSize)static voidsetLimitJsonSize(long limitJsonSize)static voidsetLimitParamSize(int limitParamSize)
-
-
-
Field Detail
-
HTTP_PARAMETER_VALUE
public static final java.lang.String HTTP_PARAMETER_VALUE
- See Also:
- Constant Field Values
-
HTTP_PERSISTENT_ID_PARAMETER_VALUE
public static final java.lang.String HTTP_PERSISTENT_ID_PARAMETER_VALUE
- See Also:
- Constant Field Values
-
-
Method Detail
-
checkXmlAll
public static void checkXmlAll(java.io.File xmlFile) throws InvalidParseOperationException, java.io.IOExceptioncheckXMLAll : check xml sanity all aspect : size, tag size, invalid tag- Parameters:
xmlFile- as File- Throws:
InvalidParseOperationException- when parse file errorjava.io.IOException- when read file errorInvalidParseOperationException- when Sanity Check is in error
-
sanitizeJson
public static java.lang.String sanitizeJson(com.fasterxml.jackson.databind.JsonNode json) throws InvalidParseOperationExceptionSabitize the json- Parameters:
json-- Returns:
- sanitized json as String
- Throws:
InvalidParseOperationException
-
checkJsonAll
public static void checkJsonAll(com.fasterxml.jackson.databind.JsonNode json) throws InvalidParseOperationExceptioncheckJsonAll : Check sanity of json : size, invalid tag- Parameters:
json- as JsonNode- Throws:
InvalidParseOperationException- when Sanity Check is in error
-
checkJsonAll
public static void checkJsonAll(java.lang.String json) throws InvalidParseOperationExceptioncheckJsonAll : Check sanity of json : size, invalid tag- Parameters:
json- as String- Throws:
InvalidParseOperationException- when Sanity Check is in error
-
checkParameter
public static void checkParameter(java.lang.String... params) throws InvalidParseOperationExceptioncheckParameter : Check sanity of String: no javascript/xml tag, neither html tag- Parameters:
params-- Throws:
InvalidParseOperationException
-
checkHTMLFile
public static void checkHTMLFile(java.io.File file) throws InvalidParseOperationException, java.io.IOExceptioncheckHTMLFile : Check if the file contains HTML content- Parameters:
file-- Throws:
InvalidParseOperationExceptionjava.io.IOException
-
checkHeaders
public static void checkHeaders(javax.ws.rs.core.HttpHeaders headers) throws InvalidParseOperationExceptioncheckHeaders : Check sanity of Headers: no javascript/xml tag, neither html tag- Parameters:
headers-- Throws:
InvalidParseOperationException
-
checkHeadersMap
public static void checkHeadersMap(javax.ws.rs.core.MultivaluedMap<java.lang.String,java.lang.String> requestHeaders) throws InvalidParseOperationExceptionChecks sanity of Headers: no javascript/xml tag, neither html tag- Parameters:
requestHeaders-- Throws:
InvalidParseOperationException
-
checkUriParametersMap
public static void checkUriParametersMap(javax.ws.rs.core.MultivaluedMap<java.lang.String,java.lang.String> uriParameters) throws InvalidParseOperationExceptionChecks sanity of Headers: no javascript/xml tag, neither html tag- Parameters:
uriParameters-- Throws:
InvalidParseOperationException
-
checkXmlSanityTagValueSize
protected static void checkXmlSanityTagValueSize(java.io.File xmlFile) throws InvalidParseOperationException, java.io.IOExceptioncheck XML Sanity Tag and Value Size- Parameters:
xmlFile- xml file- Throws:
java.io.IOException- when read file errorInvalidParseOperationException- when Sanity Check is in error
-
checkXmlSanityFileSize
protected static void checkXmlSanityFileSize(java.io.File xmlFile) throws InvalidParseOperationExceptionCheckXMLSanityFileSize : check size of xml file- Parameters:
xmlFile- as File- Throws:
java.io.IOException- when read file exceptionInvalidParseOperationException- when Sanity Check is in error
-
checkXmlSanityTags
protected static void checkXmlSanityTags(java.io.File xmlFile) throws InvalidParseOperationException, java.io.IOExceptionCheckXMLSanityTags : check invalid tag contains of a xml file- Parameters:
xmlFile- : XML file path as String- Throws:
java.io.IOException- when read file errorInvalidParseOperationException- when Sanity Check is in error
-
checkJsonSanity
protected static void checkJsonSanity(com.fasterxml.jackson.databind.JsonNode json) throws InvalidParseOperationExceptioncheckJsonSanity : check sanity of json and find invalid key- Parameters:
json- as JsonNode- Throws:
InvalidParseOperationException- when Sanity Check is in error
-
getLimitFileSize
public static long getLimitFileSize()
- Returns:
- the limit File Size (XML or JSON)
-
setLimitFileSize
public static void setLimitFileSize(long limitFileSize)
- Parameters:
limitFileSize- the limit File Size to set (XML or JSON)
-
getLimitJsonSize
public static long getLimitJsonSize()
- Returns:
- the limit Size of a Json
-
setLimitJsonSize
public static void setLimitJsonSize(long limitJsonSize)
- Parameters:
limitJsonSize- the limit Size of a Json to set
-
getLimitFieldSize
public static int getLimitFieldSize()
- Returns:
- the limit Size of a Field in a Json
-
setLimitFieldSize
public static void setLimitFieldSize(int limitFieldSize)
- Parameters:
limitFieldSize- the limit Size of a Field in a Json to set
-
getLimitParamSize
public static int getLimitParamSize()
- Returns:
- the limit Size of a parameter
-
setLimitParamSize
public static void setLimitParamSize(int limitParamSize)
- Parameters:
limitParamSize- the limit Size of a parameter to set
-
-