List of usage examples for org.apache.commons.lang StringEscapeUtils escapeHtml
public static String escapeHtml(String input)
From source file:com.board.games.handler.smf.SMFPokerLoginServiceImpl.java
private String authenticate(String user, String password) throws Exception { try {// w w w . ja v a2 s . c o m int idx = user.indexOf("_"); if (idx != -1) { // let bots through String idStr = user.substring(idx + 1); if (user.toUpperCase().startsWith("BOT")) { return idStr; } } if (user.toUpperCase().startsWith("GUESTXDEMO")) { return String.valueOf(pid.incrementAndGet()); } log.debug("loading class name for database connection" + jdbcDriverClassName); // This will load the MySQL driver, each DB has its own driver // "com.mysql.jdbc.Driver" Class.forName(jdbcDriverClassName); // Setup the connection with the DB // "jdbc:mysql://localhost/dbName?" + "user=&password="); connect = DriverManager.getConnection(connectionStr); // Statements allow to issue SQL queries to the database statement = connect.createStatement(); log.debug("Execute query: authenticate"); // Result set get the result of the SQL query // SELECT * FROM ipb3_members WHERE members_seo_name = '' /* smf_members password_salt = 0682 passwd = 92ff6c5426a23d105af69f49eb9d0210972ecbca id_member posts member_name */ String selectSQL = "select member_name, id_member, " + " passwd, password_salt, " + " posts from " + dbPrefix + "members " + " where member_name = " + "\'" + user + "\'"; log.debug("Executing query : " + selectSQL); resultSet = statement.executeQuery(selectSQL); String members_pass_hash = null; int member_id = 0; int posts = 0; if (resultSet != null && resultSet.next()) { member_id = resultSet.getInt("id_member"); String name = resultSet.getString("member_name"); members_pass_hash = resultSet.getString("passwd"); log.debug("DB members_pass_hash = " + members_pass_hash); posts = resultSet.getInt("posts"); log.debug("User: " + user + " Password " + password); String escapePwdHTML = StringEscapeUtils.escapeHtml(password); // log.debug("escapeHTML = " + escapePwdHTML); String pwdSha1 = HashHelper.getSha1(user.toLowerCase() + password); log.debug("pwdSha1 = " + pwdSha1); log.debug("members_pass_hash = " + members_pass_hash); log.debug("# of Post " + posts); if (pwdSha1 != null && members_pass_hash != null) { if (pwdSha1.equals(members_pass_hash)) { /* if (posts >= 1) { return String.valueOf(member_id); } else { log.debug("Required number of posts not met, denied login"); return "-2"; } */ } else { log.debug("hash not matched for user " + user + " password " + password); return "-1"; } } } else { log.debug("resultset is null " + selectSQL); } } catch (Exception e) { log.error("Error : " + e.toString()); // throw e; } finally { close(); } return "-3"; }
From source file:com.jada.taglib.language.LanguageTagSupport.java
public String buildHidden(String name, String value) { String indexName = findName(name); if (value == null) { value = ""; }// w ww.j av a 2s. co m String s = ""; s = "<input type=\"hidden\" "; s += "name=\"" + indexName + "\" "; s += "value=\"" + StringEscapeUtils.escapeHtml(value) + "\" "; s += ">"; return s; }
From source file:com.redhat.rhn.frontend.action.user.AssignedGroupsSetupAction.java
/** * Updates the Default System Groups permissions for the specified user. * @param mapping Struts ActionMapping//from w w w. j a v a2 s .c om * @param formIn Form containing submitted data. * @param request HttpServletRequest * @param response HttpServletResponse */ public void updateDefaults(ActionMapping mapping, ActionForm formIn, HttpServletRequest request, HttpServletResponse response) { RequestContext requestContext = new RequestContext(request); DynaActionForm form = (DynaActionForm) formIn; User user = UserManager.lookupUser(requestContext.getCurrentUser(), requestContext.getParamAsLong("uid")); if (user == null) { throw new BadParameterException("Invalid uid"); } //request.setAttribute(RhnHelper.TARGET_USER, user); String[] groupArray = (String[]) form.get("defaultGroups"); Set groupSet = new HashSet(); for (int i = 0; i < groupArray.length; i++) { groupSet.add(new Long(groupArray[i])); } user.setDefaultSystemGroupIds(groupSet); UserManager.storeUser(user); ActionMessages msgs = new ActionMessages(); msgs.add(ActionMessages.GLOBAL_MESSAGE, new ActionMessage("message.defaultSystemGroups", StringEscapeUtils.escapeHtml(user.getLogin()))); saveMessages(request, msgs); }
From source file:at.lame.hellonzb.parser.NzbParser.java
/** * This method writes out the content (segments) of a DownloadFile object * to the given OutputStreamWriter object. * /*from www . j a v a2 s .co m*/ * @param writer The stream writer object to use * @param dlFile The download file to use * @throws IOException */ private static void writeDlFileToXml(OutputStreamWriter writer, DownloadFile dlFile) throws IOException { String newline = System.getProperty("line.separator"); String poster = StringEscapeUtils.escapeHtml(dlFile.getPoster()); String date = StringEscapeUtils.escapeHtml(dlFile.getCreationDate()); String subject = StringEscapeUtils.escapeHtml(dlFile.getSubject()); // <file ...> element writer.write("<file poster=\"" + poster + "\" "); writer.write("date=\"" + date + "\" "); writer.write("subject=\"" + subject + "\">"); writer.write(newline); // <group> elements writer.write("<groups>"); writer.write(newline); for (String group : dlFile.getGroups()) { writer.write("<group>" + group + "</group>"); writer.write(newline); } writer.write("</groups>"); writer.write(newline); // <segment> elements writer.write("<segments>"); writer.write(newline); for (DownloadFileSegment seg : dlFile.getAllOriginalSegments()) { if (seg == null) continue; String aID = StringEscapeUtils.escapeXml(seg.getArticleId()); writer.write("<segment bytes=\"" + seg.getSize() + "\" " + "number=\"" + seg.getIndex() + "\">" + aID + "</segment>"); writer.write(newline); } writer.write("</segments>"); writer.write(newline); // end <file> element writer.write("</file>"); writer.write(newline); }
From source file:com.epimorphics.lda.renderers.common.DisplayHierarchyNode.java
/** @return A list of the related links to this node */ public List<Link> relatedLinks() { List<Link> links = new ArrayList<Link>(); boolean isLiteral = rdfNode().isLiteral(); boolean isNumeric = isLiteral && (rdfNode().getValue() instanceof Number); Page page = rdfNode().page();/*from w w w .j a v a2s . co m*/ String param = pathTo().toString(); String paramHTML = pathTo.toHTMLString(); String valueStr = isLiteral ? rdfNode().getLexicalForm() : rdfNode.getName(); String valueLabel = "<code class='rdf-value'>" + StringEscapeUtils.escapeHtml(truncateToMaxLength(valueStr)) + "</code>"; if (isNumeric) { links.add(generateLink("max-" + param, paramHTML, valueStr, valueLabel, "≤", "filter-less-than", true, page)); } if (isLiteral) { links.add(generateLink(param, paramHTML, valueStr, valueLabel, "to be", "filter-equals", true, page)); } else if (!rdfNode().isAnon()) { String shortName = null; if (shortNameRenderer != null) { shortName = shortNameRenderer.lookupURI(rdfNode().getURI()); } String uriValue = (shortName == null) ? rdfNode().getURI() : shortName; links.add(generateLink(param, paramHTML, uriValue, valueLabel, "to be", "filter-equals", true, page)); } if (isNumeric) { links.add(generateLink("min-" + param, paramHTML, valueStr, valueLabel, "≥", "filter-greater-than", true, page)); } links.add(generateSortLink(param, paramHTML, "sort sort-asc", true, page)); links.add(generateSortLink(param, paramHTML, "sort sort-desc", false, page)); return links; }
From source file:de.fhg.fokus.openride.services.driver.offer.OfferService.java
@GET @Produces("text/json") public Response getOffers(@PathParam("username") String username, @PathParam("rideId") String rideId, @Context ServletContext context) { System.out.println("getOffer start"); List<DriverUndertakesRideEntity> drives = driverUndertakesRideControllerBean.getActiveDrives(username); ArrayList<Offer> offers = new ArrayList<Offer>(); Offer offer = null;//from ww w .j av a 2 s. c o m for (DriverUndertakesRideEntity drive : drives) { //FIXME: check attributes! System.out.println("OfferService: Drive -> " + drive.toString()); if (drive != null) { double startptLat = drive.getRideStartpt() != null ? drive.getRideStartpt().getY() : -1.0; double startptLon = drive.getRideStartpt() != null ? drive.getRideStartpt().getX() : -1.0; double endptLat = drive.getRideEndpt() != null ? drive.getRideEndpt().getY() : -1.0; double endptLon = drive.getRideEndpt() != null ? drive.getRideEndpt().getX() : -1.0; long starttime = drive.getRideStarttime() != null ? drive.getRideStarttime().getTime() : new Long("1").MIN_VALUE; //FIXME: was maxWaitTime, but should be rideprice?? double rideprice = -1.0; String rideComment = drive.getRideComment(); int acceptableDetourInMin = -1;//FIXME: (pab) what is different from the above Calling this: drive.getRideAcceptableDetourInMin(); int acceptableDetourInKm = -1; //drive.getRideAcceptableDetourInKm(); int acceptableDetourInPercent = -1; //drive.getRideAcceptableDetourInPercent();//drive.getRideAcceptableDetourInMin(); int offeredseats = drive.getRideOfferedseatsNo(); String offeredCurrency = drive.getRideOfferedCurrency(); String startptAddress = drive.getStartptAddress(); String endptAddress = drive.getEndptAddress(); offer = new Offer(drive.getRideId(), startptLat, startptLon, endptLat, endptLon, starttime, rideprice, StringEscapeUtils.escapeHtml(rideComment), acceptableDetourInMin, acceptableDetourInKm, acceptableDetourInPercent, offeredseats, StringEscapeUtils.escapeHtml(offeredCurrency), StringEscapeUtils.escapeHtml(startptAddress), StringEscapeUtils.escapeHtml(endptAddress), null); offer.setUpdated(driverUndertakesRideControllerBean.isDriveUpdated(drive.getRideId())); offers.add(offer); } else { System.out.println("OfferService: drive was null"); } } ArrayList list = new ArrayList(); list.add(new Offer()); XStream x = Utils.getJasonXStreamer(list); Response response = Response.ok(x.toXML(offers)).build(); return response; }
From source file:com.hangum.tadpole.manager.core.dialogs.users.NewUserDialog.java
/** * generate google otp //from w ww . ja va2 s . c o m */ private void generateGoogleOTP() { if (!btnGetOptCode.getSelection()) { getShell().setSize(380, 250); textSecretKey.setText(""); //$NON-NLS-1$ labelQRCodeURL.setText(""); //$NON-NLS-1$ return; } String strEmail = textEMail.getText(); if ("".equals(strEmail)) { //$NON-NLS-1$ getShell().setSize(380, 250); btnGetOptCode.setSelection(false); textEMail.setFocus(); MessageDialog.openError(getParentShell(), Messages.NewUserDialog_6, Messages.NewUserDialog_7); return; } else if (!Utils.isEmail(strEmail)) { getShell().setSize(380, 250); btnGetOptCode.setSelection(false); textEMail.setFocus(); MessageDialog.openError(getParentShell(), Messages.NewUserDialog_6, Messages.NewUserDialog_15); return; } getShell().setSize(380, 370); secretKey = GoogleAuthManager.getInstance().getSecretKey(); textSecretKey.setText(secretKey); String[] strUserDomain = StringUtils.split(strEmail, "@"); //$NON-NLS-1$ String strURL = GoogleAuthManager.getInstance().getURL(strUserDomain[0], strUserDomain[1], secretKey); if (logger.isDebugEnabled()) { logger.debug("user is " + strUserDomain[0] + ", domain is " + strUserDomain[1] + ", secretkey is " //$NON-NLS-1$//$NON-NLS-2$//$NON-NLS-3$ + secretKey); logger.debug("url is " + strURL); //$NON-NLS-1$ } strURL = StringEscapeUtils.escapeHtml(strURL); labelQRCodeURL.setText( String.format("<a href='%s' target='_blank'>Show QRCode(Only support Google Chrome)</a>", strURL)); }
From source file:com.epam.cme.storefront.controllers.pages.StoreLocatorPageController.java
protected void setUpPageData(final Model model, final StoreFinderSearchPageData<PointOfServiceData> searchResult, final List<Breadcrumb> breadCrumbsList) { model.addAttribute("storeSearchPageData", searchResult); model.addAttribute("locationQuery", StringEscapeUtils.escapeHtml(searchResult.getLocationText())); model.addAttribute(WebConstants.BREADCRUMBS_KEY, breadCrumbsList); }
From source file:edu.cornell.mannlib.vitro.webapp.controller.visualization.ShortURLVisualizationController.java
/** * An ideal short url request would mimic, * vivo.com/vis/author-network/shortURI * vivo.com/vis/grant-graph/shortURI * etc. So first we obtain the request url which can be used to extract the requested visualization * and the subject of the visualization. So the below pattern matcher will take "/vis/<vis-name>/<shortURI>" * as an input./* w w w.ja v a2s .c o m*/ */ private List<String> extractShortURLParameters(VitroRequest vitroRequest) { List<String> matchedGroups = new ArrayList<String>(); String subURIString = vitroRequest.getRequestURI().substring(vitroRequest.getContextPath().length() + 1); String[] urlParams = StringEscapeUtils.escapeHtml(subURIString).split("/"); if (urlParams.length > 1 && urlParams[0].equalsIgnoreCase("vis")) { for (int ii = 1; ii < urlParams.length; ii++) { matchedGroups.add(urlParams[ii]); } } return matchedGroups; }
From source file:com.fluidops.iwb.ajax.FMultiStageInputWizard.java
@Override public void doAfterFinish() { // execute method, if necessary if (onSaveMethod != null) { try {/* w w w.ja v a2 s. c o m*/ // TODO maybe add feature to give the CodeExecutionContext // problem is: how to obtain PageContext in this component onSaveMethod.passContext = onSaveMethod.passContext == null ? Boolean.FALSE : onSaveMethod.passContext; CodeExecution.execute(onSaveMethod, null); } catch (Exception e) { logger.warn("Error while executing code: ", e); throw new RuntimeException("Error: " + e.getMessage()); } } // redirect to new page final String redirect = EndpointImpl.api().getRequestMapper().getRequestStringFromValue(subject); if (StringUtil.isNullOrEmpty(saveProblems)) { if (doAfterFinish == AfterFinishAction.REDIRECT_TO_SUBJECT) addClientUpdate(new FClientUpdate("document.location='" + redirect + "'")); else if (doAfterFinish == AfterFinishAction.RELOAD) addClientUpdate(new FClientUpdate("document.location=document.location")); // else if (doAfterFinish==AfterFinishAction.NONE) -> nothing to do } else { final FPopupWindow p = getPage().getPopupWindowInstance(); p.removeAll(); p.setTitle("Problems while saving the changes"); FContainer c = new FContainer("c" + Rand.getIncrementalFluidUUID()); FHTML l = new FHTML("l" + Rand.getIncrementalFluidUUID()); l.setValue(StringEscapeUtils.escapeHtml(saveProblems)); FButton confirm = new FButton("b" + Rand.getIncrementalFluidUUID()) { @Override public void onClick() { p.hide(); p.populateView(); if (redirectToSubject) addClientUpdate(new FClientUpdate("document.location='" + redirect + "'")); else addClientUpdate(new FClientUpdate("document.location=document.location")); } }; confirm.setValue(" OK "); c.add(l); c.add(confirm); p.add(c); p.populateView(); p.show(); } }