Package org.apache.jasper.security
Class SecurityUtil
java.lang.Object
org.apache.jasper.security.SecurityUtil
Util class for Security related operations.
-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionstatic StringDeprecated.This method will be removed in Tomcat 9static booleanReturn theSecurityManageronly if Security is enabled AND package protection mechanism is enabled.
-
Constructor Details
-
SecurityUtil
public SecurityUtil()
-
-
Method Details
-
isPackageProtectionEnabled
public static boolean isPackageProtectionEnabled()Return theSecurityManageronly if Security is enabled AND package protection mechanism is enabled.- Returns:
trueif package protection is enabled
-
filter
Deprecated.This method will be removed in Tomcat 9Filter the specified message string for characters that are sensitive in HTML. This avoids potential attacks caused by including JavaScript codes in the request URL that is often reported in error messages.- Parameters:
message- The message string to be filtered- Returns:
- the HTML filtered message
-