Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

org.owasp.validator.css
Class CssScanner

java.lang.Object
  extended by org.owasp.validator.css.CssScanner

public class CssScanner
extends java.lang.Object

Encapsulates the parsing and validation of a CSS stylesheet or inline declaration. To make use of this class, instantiate the scanner with the desired policy and call either scanInlineSheet() or scanStyleSheet as appropriate.

Author:
Jason Li
See Also:
#scanInlineStyle(String, String), #scanStyleSheet(String)

Constructor Summary
CssScanner(Policy policy, java.util.ResourceBundle messages)
          Constructs a scanner based on the given policy.
 
Method Summary
static void main(java.lang.String[] args)
          Deprecated.  
 CleanResults scanInlineStyle(java.lang.String taintedCss, java.lang.String tagName, int sizeLimit)
          Scans the contents of an inline style declaration (ex.
 CleanResults scanStyleSheet(java.lang.String taintedCss, int sizeLimit)
          Scans the contents of a full stylesheet (ex.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

CssScanner

public CssScanner(Policy policy,
                  java.util.ResourceBundle messages)
Constructs a scanner based on the given policy.

Parameters:
policy - the policy to follow when scanning
Method Detail

scanStyleSheet

public CleanResults scanStyleSheet(java.lang.String taintedCss,
                                   int sizeLimit)
                            throws ScanException
Scans the contents of a full stylesheet (ex. a file based stylesheet or the complete stylesheet contents as declared within <style> tags)

Parameters:
taintedCss - a String containing the contents of the CSS stylesheet to validate
sizeLimit - the limit on the total size in bytes of any imported stylesheets
Returns:
a CleanResuts object containing the results of the scan
Throws:
ScanException - if an error occurs during scanning

scanInlineStyle

public CleanResults scanInlineStyle(java.lang.String taintedCss,
                                    java.lang.String tagName,
                                    int sizeLimit)
                             throws ScanException
Scans the contents of an inline style declaration (ex. in the style attribute of an HTML tag) and validates the style sheet according to this CssScanner's policy file.

Parameters:
taintedCss - a String containing the contents of the CSS stylesheet to validate
tagName - the name of the tag for which this inline style was declared
sizeLimit - the limit on the total size in bites of any imported stylesheets
Returns:
a CleanResuts object containing the results of the scan
Throws:
ScanException - if an error occurs during scanning

main

public static void main(java.lang.String[] args)
                 throws java.lang.Exception
Deprecated. 

Test method to demonstrate CSS scanning.

Parameters:
args - unused
Throws:
java.lang.Exception - if any error occurs
Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD
Copyright © 2010 The Open Web Application Security Project (OWASP). All Rights Reserved.