public class DefaultExternalResourceSecurity extends java.lang.Object implements ExternalResourceSecurity
ExternalResourceSecurity
interface.
It allows all types of external resources to be loaded, but only if they
come from the same server as the document they are referenced from.Modifier and Type | Field and Description |
---|---|
static java.lang.String |
DATA_PROTOCOL |
static java.lang.String |
ERROR_CANNOT_ACCESS_DOCUMENT_URL
Message when trying to load a external resource file and the Document
does not have a URL
|
static java.lang.String |
ERROR_EXTERNAL_RESOURCE_FROM_DIFFERENT_URL
Message when trying to load a externalResource file from a server
different than the one of the document.
|
protected java.lang.SecurityException |
se
The exception is built in the constructor and thrown if
not null and the checkLoadExternalResource method is called.
|
Constructor and Description |
---|
DefaultExternalResourceSecurity(ParsedURL externalResourceURL,
ParsedURL docURL) |
Modifier and Type | Method and Description |
---|---|
void |
checkLoadExternalResource()
Controls whether the externalResource should be loaded or not.
|
public static final java.lang.String DATA_PROTOCOL
public static final java.lang.String ERROR_CANNOT_ACCESS_DOCUMENT_URL
public static final java.lang.String ERROR_EXTERNAL_RESOURCE_FROM_DIFFERENT_URL
protected java.lang.SecurityException se
public DefaultExternalResourceSecurity(ParsedURL externalResourceURL, ParsedURL docURL)
externalResourceURL
- url for the externalResource, as defined in
the externalResource's xlink:href attribute. If that
attribute was empty, then this parameter should
be nulldocURL
- url for the document into which the
externalResource was found.public void checkLoadExternalResource()
checkLoadExternalResource
in interface ExternalResourceSecurity
java.lang.SecurityException
- if the externalResource should not be loaded.Copyright © 2022 Apache Software Foundation. All Rights Reserved.