diff options
Diffstat (limited to 'ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/util/XSSFilter.java')
-rw-r--r-- | ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/util/XSSFilter.java | 33 |
1 files changed, 0 insertions, 33 deletions
diff --git a/ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/util/XSSFilter.java b/ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/util/XSSFilter.java index a1c8358a..f20b2116 100644 --- a/ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/util/XSSFilter.java +++ b/ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/util/XSSFilter.java @@ -43,26 +43,6 @@ package org.onap.portalsdk.analytics.util; * This class is used to filter javascript tags to avoid XSS attacks. */ public class XSSFilter { - - // private static String[] filterChars = { "<", ">", "<", ">", "\"", "\\", "0x" }; -// private static String[] replacementChars = { " ", " ", " ", " ", "'", "/", "0 x" }; - -/* public static synchronized String filterRequest(String param) { - String value = param; - - if (param != null) { - - for (int i = 0; i < filterChars.length; i++) { - value = filterCharacters(filterChars[i], replacementChars[i], - value); - } - - } - - return value; - - } -*/ public static synchronized String filterRequestOnlyScript(String param) { String value = ""; @@ -83,19 +63,6 @@ public class XSSFilter { return value; } - -// private static synchronized String filterCharacters(String originalChar, String newChar, -// String param) { -// StringBuffer sb = new StringBuffer(param); -// -// for (int position = param.toLowerCase().indexOf(originalChar); position >= 0;) { -// sb.replace(position, position + originalChar.length(), newChar); -// param = sb.toString(); -// position = param.toLowerCase().indexOf(originalChar); -// } -// -// return sb.toString(); -// } public static void main (String args[]) { String value = XSSFilter.filterRequest("<s\nC\nr\nI\np\nT\n>\na\nl\ne\nr\nt\n('sundar');</SCRIPT>javascript:alert('Sundar');"); |