AntiSamy (OWASP AntiSamy 1.5.3 API)

java.lang.Object
- org.owasp.validator.html.AntiSamy

```
public class AntiSamy
extends Object
```
This is the only class from which the outside world should be calling. The scan() method holds the meat and potatoes of AntiSamy. The file contains a number of ways for scan()'ing depending on the accessibility of the policy file.

Author:

Arshan Dabirsiaghi

Field Summary

Fields
Modifier and Type Field and Description

static int DOM

static int SAX

Fields
Modifier and Type	Field and Description
`static int`	`DOM`
`static int`	`SAX`

Constructor Summary

Constructors
Constructor and Description

AntiSamy()

AntiSamy(Policy policy)

Constructors
Constructor and Description
`AntiSamy()`
`AntiSamy(Policy policy)`

Method Summary

Methods
Modifier and Type	Method and Description
`CleanResults`	`scan(String taintedHTML)` The meat and potatoes.
`CleanResults`	`scan(String taintedHTML, File policyFile)` This method wraps `scan()` using the policy File object passed in.
`CleanResults`	`scan(String taintedHTML, int scanType)`
`CleanResults`	`scan(String taintedHTML, Policy policy)` This method wraps `scan()` using the Policy object passed in.
`CleanResults`	`scan(String taintedHTML, Policy policy, int scanType)`
`CleanResults`	`scan(String taintedHTML, String filename)` This method wraps `scan()` using the Policy object passed in.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

DOM
```
public static int DOM
```

SAX
```
public static int SAX
```

Constructor Detail

AntiSamy
```
public AntiSamy()
```

AntiSamy
```
public AntiSamy(Policy policy)
```

Method Detail

scan
```
public CleanResults scan(String taintedHTML)
                  throws ScanException,
                         PolicyException
```
The meat and potatoes. The scan() family of methods are the only methods the outside world should be calling to invoke AntiSamy.

Parameters:
taintedHTML - Untrusted HTML which may contain malicious code.

Returns:
A CleanResults object which contains information about the scan (including the results).

Throws:

ScanException - When there is a problem encountered while scanning the HTML.

PolicyException - When there is a problem reading the policy file.

scan

public CleanResults scan(String taintedHTML,
                int scanType)
                  throws ScanException,
                         PolicyException

Throws:: ScanException; PolicyException

scan

public CleanResults scan(String taintedHTML,
                Policy policy)
                  throws ScanException,
                         PolicyException

This method wraps scan() using the Policy object passed in.

Throws:: ScanException; PolicyException

scan

public CleanResults scan(String taintedHTML,
                Policy policy,
                int scanType)
                  throws ScanException,
                         PolicyException

Throws:: ScanException; PolicyException

scan

public CleanResults scan(String taintedHTML,
                String filename)
                  throws ScanException,
                         PolicyException

This method wraps scan() using the Policy object passed in.

Throws:: ScanException; PolicyException

scan

public CleanResults scan(String taintedHTML,
                File policyFile)
                  throws ScanException,
                         PolicyException

This method wraps scan() using the policy File object passed in.

Throws:: ScanException; PolicyException

Class AntiSamy

Field Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Field Detail

DOM

SAX

Constructor Detail

AntiSamy

AntiSamy

Method Detail

scan

scan

scan

scan

scan

scan