xss filter

2021-01-21 19:15:10 +09:00
parent edfa2584f3
commit 269f2e3c10
2 changed files with 5 additions and 0 deletions
--- a/jspblog/src/main/java/com/example/jspblog/domain/board/Board.java
+++ b/jspblog/src/main/java/com/example/jspblog/domain/board/Board.java
@@ -19,4 +19,8 @@ public class Board {
    private String content;
    private int readCount;
    private Timestamp createDate;
+
+    public String getTitle() {
+        return title.replaceAll("<", "&lt;").replaceAll(">", "&gt;");
+    }
 }
--- a/jspblog/src/main/webapp/WEB-INF/web.xml
+++ b/jspblog/src/main/webapp/WEB-INF/web.xml
@@ -25,6 +25,7 @@
        <filter-name>charConfig</filter-name>
        <url-pattern>/*</url-pattern>
    </filter-mapping>
+
    <filter-mapping>
        <filter-name>forbiddenUrlConfig</filter-name>
        <url-pattern>*.jsp</url-pattern>