org.exoplatform.wcm.webui.reader

Class ContentReader

java.lang.Object

org.exoplatform.wcm.webui.reader.ContentReader

public class ContentReader
extends Object

Constructor Summary

Constructors

Constructor and Description
ContentReader()

Method Summary

Modifier and Type	Method and Description
static String	getEscapeHtmlContent(String content) Escapes the characters in a content using HTML entities.
static String	getUnescapeIllegalJcrContent(String content) Unescapes previously escaped jcr chars.
static String	getXSSCompatibilityContent(String content) Gets the content compatibility with XSS problems.
static String	simpleEscapeHtml(String value) Escape html avoid XSS

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

ContentReader

public ContentReader()

Method Detail

getXSSCompatibilityContent

public static String getXSSCompatibilityContent(String content)

Gets the content compatibility with XSS problems. This method will do

- Unescapes previously escaped jcr chars - Escapes the characters in a the content using HTML entities

Parameters:

content - the node

Returns:

the content compatibility with XSS

getEscapeHtmlContent

public static String getEscapeHtmlContent(String content)

Escapes the characters in a content using HTML entities.

For example:

"bread" and "butter"

becomes:

"bread" & "butter"

Parameters:

content - to escape, may be null

Returns:

a new escaped content, null if null string input

getUnescapeIllegalJcrContent

public static String getUnescapeIllegalJcrContent(String content)

Unescapes previously escaped jcr chars.

Parameters:

content - the content to unescape

Returns:

the unescaped content

simpleEscapeHtml

public static String simpleEscapeHtml(String value)

Escape html avoid XSS

Parameters:

value -

Returns: