Type: function
Creates an OWASP policy with default rules. Rules can be modified like so:
def allowAttributesOnElems(attrs: List[String], elems: List[String]): OWaspPolicy
def allowAttributesGlobally(attrs: List[String]): OWaspPolicy
def disallowAttributesOnElems(attrs: List[String], elems: List[String]): OWaspPolicy
def disallowAttributesGlobally(attrs: List[String]): OWaspPolicy
def allowElements(elems: List[String]): OWaspPolicy
def allowTextIn(elems: List[String]): OWaspPolicy
def disallowTextIn(elems: List[String]): OWaspPolicy
def requireReslOnLinks(links: List[String]): OWaspPolicy
def skipRelsOnLinks(links: List[String]): OWaspPolicy
def allowUrlProtocols(protocols: List[String]): OWaspPolicy
def disallowUrlProtocols(protocols: List[String]): OWaspPolicy
def allowWithoutAttributes(elems: List[String]): OWaspPolicy
def disallowWithoutAttributes(elems: List[String]): OWaspPolicy
def disallowElements(elems: List[String]): OWaspPolicy
def allowStandardUrlProtocols: OWaspPolicy
def allowCommonInlineFormattingElements: OWaspPolicy
def allowCommonBlockElements: OWaspPolicy
def requireRelNofollowOnLinks: OWaspPolicy
def allowStyling: OWaspPolicy
def allowStyling(properties: List[String]): OWaspPolicy
def allowStylingWithDefault(properties: List[String]): OWaspPolicy
def allowUrlsInStyles(elemAttrValueFunc: Tuple3[String, String, String] => String): OWaspPolicy
def withPreProcessor(
onOpenDocument: () => Unit = () => {},
onCloseDocument: () => Unit = () => {},
onOpenElement: Tuple2[String, List[String]] => Unit = (t: Tuple2[String, List[String]]) => Unit,
onCloseElement: String => Unit = (s: String) => Unit,
onText: String => Unit = (s: String) => Unit
): OWaspPolicy
def withPostProcessor(
onOpenDocument: () => Unit = () => {},
onCloseDocument: () => Unit = () => {},
onOpenElement: Tuple2[String, List[String]] => Unit = (t: Tuple2[String, List[String]]) => Unit,
onCloseElement: String => Unit = (s: String) => Unit,
onText: String => Unit = (s: String) => Unit
): OWaspPolicy
Classpath
Children