• Platform
    • Manager
    • Maestro
    • Exchange
    • Workspaces
    • Analytics
    • Springboard
    • API
Journey SDK

Journey SDK

  • Getting Started
  • Developer Guide
  • References
  • Services Guide

›Classes

com.avoka.tm.func

  • com.avoka.tm.func
  • Classes

    • Class DeliveryFuncResult
    • Class DeliveryFuncResultBuilder
    • Class FormFuncResult
    • Class FuncParam

    Interface

    • Interface IFluentFunction

com.avoka.tm.http

  • com.avoka.tm.http
  • Classes

    • Class DeleteRequest
    • Class GetRequest
    • Class HttpRequest
    • Class HttpRequest.FileParam
    • Class HttpRequest.Param
    • Class HttpResponse
    • Class PatchRequest
    • Class PostRequest
    • Class PutRequest
    • Class RequestBuilder

com.avoka.tm.job

  • com.avoka.tm.job
  • Classes

    • Class ActionResult
    • Class ActionResultBuilder
    • Class Jobs

com.avoka.tm.query

  • com.avoka.tm.query
  • Classes

    • Class JobQuery
    • Class PropertyQuery
    • Class RefDataQuery
    • Class SpaceQuery
    • Class SvcConnQuery
    • Class SvcDefQuery
    • Class TxnHistoryQuery
    • Class TxnQuery
    • Class UserQuery

    Enum

    • Enum TxnHistoryQuery.Time
    • Enum TxnQuery.Time

com.avoka.tm.security

  • com.avoka.tm.security
  • Classes

    • Class Saml2Parser
    • Class Saml2ParserResult
    • Class SsoAuthToken

com.avoka.tm.svc

  • com.avoka.tm.svc
  • Classes

    • Class DeliveryTxnBuilder
    • Class Emailer
    • Class ErrorLogger
    • Class EventLogger
    • Class FluentFuncInvoker
    • Class GroovyServiceInvoker
    • Class JobUpdater
    • Class PropertyBuilder
    • Class ReceiptSvc
    • Class RefDataSvc
    • Class ServiceInvoker
    • Class SvcConnUpdater
    • Class TrackingCodeBuilder
    • Class TxnBuilder
    • Class TxnCheckpointSvc
    • Class TxnUpdater
    • Class UserBuilder

com.avoka.tm.test

  • com.avoka.tm.test
  • Classes

    • Class AbstractJUnitTest
    • Class JUnitTestRunner
    • Class JUnitTestRunner.TestWrapper
    • Class MockRegister
    • Class MockRequest
    • Class MockResponse
    • Class MockServletContext
    • Class MockVoBuilder

    Exception

    • junittestexception

com.avoka.tm.util

  • com.avoka.tm.util
  • Classes

    • Class Contract
    • Class DeliveryResult
    • Class DeliveryResultBuilder
    • Class Logger
    • Class MemCache
    • Class ObjectMapper
    • Class Path
    • Class Security
    • Class Threads
    • Class TxnUrlBuilder
    • Class VelTemplate
    • Class XmlDoc

    Enum

    • Enum ObjectMapper.MappingStrategy

    Exception

    • redirectexception

com.avoka.tm.vo

  • com.avoka.tm.vo
  • Classes

    • Class FileAttach
    • Class Form
    • Class Job
    • Class JobAction
    • Class JobStep
    • Class Space
    • Class SvcConn
    • Class SvcDef
    • Class Txn
    • Class TxnCheckpoint
    • Class TxnDeliveryFunc
    • Class User

Class Security

public class Security
extends java.lang.Object
Provides transaction security functions. Examples Please find the transaction security function examples below.

XML Safe Check Example

This Groovy example shows how to check if the XML document does not contain any XSS characters.
 import com.avoka.tm.util.Security
 boolean isSafe = Security.isXmlDocumentSafe(xmlDocument) 

Text Safe Check Example

This Groovy example shows how to check if the XML document does not contain any XSS characters.
 import com.avoka.tm.util.Security
 boolean isSafe = Security.isXmlTextSafe(xmlText) 

Adding Transaction Security Tokens to Session Example

This Groovy example shows how to add the transaction security tokens to the session.
 import com.avoka.tm.util.Security
 Security.addSessionTxnSecurityTokens(request, txnId) 
Since:
5.0

Method Summary

All Methods Static Methods Concrete Methods
Modifier and Type Method Description
static void
addSessionReceiptSecurityTokens​(javax.servlet.http.HttpServletRequest request,
                               Txn txn)
Add the transaction PDF receipt security access tokens to the session.
static void
addSessionTxnSecurityTokens​(javax.servlet.http.HttpServletRequest request,
                           Txn txn)
Add the transaction security access tokens to the session.
static java.lang.String getSessionEntryUrl​(javax.servlet.http.HttpServletRequest request) Return the session stored Entry URL for SSO integration support.
static boolean isXssSafeFilename​(java.lang.String value) Return true if the filename value is XSS safe.
static boolean isXssSafeText​(java.lang.String text) Return true if the XML text does not contain any XSS characters, or false otherwise.
static boolean isXssSafeXmlDoc​(org.w3c.dom.Document document) Return true if the XML document does not contain any XSS characters, or false otherwise.
static boolean isXssSafeXmlText​(java.lang.String value) Return true if the XML text does not contain any XSS characters, or false otherwise.
static java.lang.String storeSessionEntryUrl​(javax.servlet.http.HttpServletRequest request) Stores the Entry URL in the session for SSO integration support.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Detail

addSessionTxnSecurityTokens

public static void addSessionTxnSecurityTokens​(javax.servlet.http.HttpServletRequest request,
                                               Txn txn)
Add the transaction security access tokens to the session.
Parameters:
request - the HTTP request (required)
txn - the transaction (required)

addSessionReceiptSecurityTokens

public static void addSessionReceiptSecurityTokens​(javax.servlet.http.HttpServletRequest request,
                                                   Txn txn)
Add the transaction PDF receipt security access tokens to the session.
Parameters:
request - the HTTP request (required)
txn - the transaction (required)
Since:
18.11.0

storeSessionEntryUrl

public static java.lang.String storeSessionEntryUrl​(javax.servlet.http.HttpServletRequest request) Stores the Entry URL in the session for SSO integration support.
Parameters:
request - the servlet request (required)
Returns:
the stored URL stored in the session
Since:
18.11.0

getSessionEntryUrl

public static java.lang.String getSessionEntryUrl​(javax.servlet.http.HttpServletRequest request) Return the session stored Entry URL for SSO integration support.
Parameters:
request - the servlet request (required)
Returns:
the Entry URL if available or null otherwise
Since:
18.11.0

isXssSafeXmlDoc

public static boolean isXssSafeXmlDoc​(org.w3c.dom.Document document) Return true if the XML document does not contain any XSS characters, or false otherwise. Please see dangerous characters: XSS Filter Evasion Cheat Sheet
Parameters:
document - the XML document to test (required)
Returns:
true, if is XSS safe or false otherwise

isXssSafeXmlText

public static boolean isXssSafeXmlText​(java.lang.String value) Return true if the XML text does not contain any XSS characters, or false otherwise. Please see dangerous characters: XSS Filter Evasion Cheat Sheet
Parameters:
value - the XML text to test (required)
Returns:
true, if is XSS safe or false otherwise

isXssSafeText

public static boolean isXssSafeText​(java.lang.String text) Return true if the XML text does not contain any XSS characters, or false otherwise. Please see dangerous characters: XSS Filter Evasion Cheat Sheet
Parameters:
text - the XML text to test (required)
Returns:
true, if is XSS safe or false otherwise

isXssSafeFilename

public static boolean isXssSafeFilename​(java.lang.String value) Return true if the filename value is XSS safe. This applies the standard XSS checks except 'document.' and 'window.' values. Please see dangerous characters: XSS Filter Evasion Cheat Sheet
Parameters:
value - the value to test (required)
Returns:
true, if is XSS safe
← Class PathClass Threads →

Terms & Conditions

Privacy Policy

Cookie Policy

Copyright © 2003-2022 Temenos Headquarters SA