| Class | Description |
|---|---|
| XMLProtectionInterceptor | |
| XMLProtector |
Filters XML streams, removing potentially malicious elements:
DTDs can be removed.
The length of element names can be limited.
The number of attibutes per element can be limited.
If
XMLProtector.protect(InputStreamReader) returns false, an unrecoverable error has
occurred (such as not-wellformed XML or an element name length exceeded the limit),
the OutputStreamWriter is left at this position: It should be discarded and
an error response should be returned to the requestor. |
Copyright © 2019. All Rights Reserved.