| 9c0798e090ee7db347657ed2b8604ce26fbe74d1 |
|
06-May-2014 |
mikesamuel <mikesamuel@ad8eed46-c659-4a31-e19d-951d88f54425> |
issue 28: fix Sanitizer.STYLES by changing PolicyFactory to store globals and apply its globals to the other factory when combining PolicyFactories via PolicyFactory.and
git-svn-id: http://owasp-java-html-sanitizer.googlecode.com/svn/trunk@229 ad8eed46-c659-4a31-e19d-951d88f54425
/external/owasp/sanitizer/src/main/org/owasp/html/PolicyFactory.java
|
| 489a0ec7301a86af8497d24748336db09ca278da |
|
26-Feb-2013 |
mikesamuel <mikesamuel@ad8eed46-c659-4a31-e19d-951d88f54425> |
upgraded to most recent version of findbugs
git-svn-id: http://owasp-java-html-sanitizer.googlecode.com/svn/trunk@155 ad8eed46-c659-4a31-e19d-951d88f54425
/external/owasp/sanitizer/src/main/org/owasp/html/PolicyFactory.java
|
| c517d7c6cadcd8643d565783464a2728be8c08d9 |
|
12-Feb-2013 |
mikesamuel <mikesamuel@ad8eed46-c659-4a31-e19d-951d88f54425> |
instead of creating <font> elements when sanitizing CSS, just do a better job of white-listing and sanitizing font faces, sizes, and alignment. This fixes problems whereby font elements were being introduced into tables but outside the table cells they were meant to style and which can legally contain them
git-svn-id: http://owasp-java-html-sanitizer.googlecode.com/svn/trunk@147 ad8eed46-c659-4a31-e19d-951d88f54425
/external/owasp/sanitizer/src/main/org/owasp/html/PolicyFactory.java
|
| 79b4c29af1261d95c663bdf0003b70cb0eb8000e |
|
21-Nov-2012 |
mikesamuel <mikesamuel@ad8eed46-c659-4a31-e19d-951d88f54425> |
added methods to the policy builder to specify which elements are allowed to contain text. By default text is allowed in any allowed element that can contain normal flow or block content, but disallowed in CDATA elements like <iframe>.
git-svn-id: http://owasp-java-html-sanitizer.googlecode.com/svn/trunk@132 ad8eed46-c659-4a31-e19d-951d88f54425
/external/owasp/sanitizer/src/main/org/owasp/html/PolicyFactory.java
|
| d687f1e3b48d511bc22f04c38931b9351846ac88 |
|
01-Aug-2012 |
mikesamuel <mikesamuel@ad8eed46-c659-4a31-e19d-951d88f54425> |
added intrustion detection version of PolicyFactory.sanitize
git-svn-id: http://owasp-java-html-sanitizer.googlecode.com/svn/trunk@112 ad8eed46-c659-4a31-e19d-951d88f54425
/external/owasp/sanitizer/src/main/org/owasp/html/PolicyFactory.java
|
| 68c898cc07aad9e4c616522afdd13a0cc4534117 |
|
01-Aug-2012 |
mikesamuel <mikesamuel@ad8eed46-c659-4a31-e19d-951d88f54425> |
added convenience APIs for intrusion detection hooks
git-svn-id: http://owasp-java-html-sanitizer.googlecode.com/svn/trunk@110 ad8eed46-c659-4a31-e19d-951d88f54425
/external/owasp/sanitizer/src/main/org/owasp/html/PolicyFactory.java
|
| 1bfae835221847e7791625e2baa98a60eb3cfa8a |
|
26-Oct-2011 |
mikesamuel <mikesamuel@ad8eed46-c659-4a31-e19d-951d88f54425> |
fix IE8 innerHTML issue
git-svn-id: http://owasp-java-html-sanitizer.googlecode.com/svn/trunk@86 ad8eed46-c659-4a31-e19d-951d88f54425
/external/owasp/sanitizer/src/main/org/owasp/html/PolicyFactory.java
|
| 38bb37b955601261fd8945ee22aa09ac30d29298 |
|
09-Oct-2011 |
mikesamuel <mikesamuel@ad8eed46-c659-4a31-e19d-951d88f54425> |
Added Sanitizers class with prepackage policies, extracted the policy implementation from HtmlPolicyBuilder and extended it with convenience methods sanitize(String) and and(..) which allows composition of built policy factories.
git-svn-id: http://owasp-java-html-sanitizer.googlecode.com/svn/trunk@71 ad8eed46-c659-4a31-e19d-951d88f54425
/external/owasp/sanitizer/src/main/org/owasp/html/PolicyFactory.java
|