Package overit.geocall.xml

Class TransformerProvider

java.lang.Object

overit.geocall.xml.TransformerProvider

public class TransformerProvider
extends Object

This class is an implementation of easy security settings XML transformers.
Inspired by http://openjdk.java.net/jeps/185

Field Summary

Fields

Modifier and Type	Field	Description
protected TransformerFactory	tf

Constructor Summary

Constructors

Constructor	Description
TransformerProvider()	Tool for building xml transformer.
TransformerProvider(boolean secureProcessing)	Tool for parsing xml securely.

Method Summary

Modifier and Type	Method	Description
Transformer	newTransformer()	creates a new identity Transformer based on the current object configuration
Transformer	newTransformer(Source source)	creates a new Transformer based on the current object configuration

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

tf

protected TransformerFactory tf

Constructor Details

TransformerProvider

public TransformerProvider()

Tool for building xml transformer. By default it configures all the factories with FEATURE_SECURE_POLICY
See https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Prevention_Cheat_Sheet

TransformerProvider

public TransformerProvider(boolean secureProcessing)

Tool for parsing xml securely. It configures all the factories with FEATURE_SECURE_POLICY dependent on the parameter secureProcessing
See https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Prevention_Cheat_Sheet

Parameters:

secureProcessing - true for configuring the factories with the feature FEATURE_SECURE_POLICY

Method Details

newTransformer

public Transformer newTransformer(Source source)
                           throws TransformerConfigurationException

creates a new Transformer based on the current object configuration

Parameters:

source - the Source of the xsl transformation definition

Returns:

a new Transformer based on the current object configuration

Throws:

TransformerConfigurationException - if there is any problem setting up the transfomer to respect the current object configuration

newTransformer

public Transformer newTransformer()
                           throws TransformerConfigurationException

creates a new identity Transformer based on the current object configuration

Returns:

a new identity Transformer based on the current object configuration

Throws:

TransformerConfigurationException - if there is any problem setting up the transfomer to respect the current object configuration