Author: sbavencoff Date: 2014-04-15 10:48:50 +0200 (Tue, 15 Apr 2014) New Revision: 1886 Url: http://forge.codelutin.com/projects/wao/repository/revisions/1886 Log: refs #4553 : add clean html Modified: trunk/pom.xml trunk/wao-web/pom.xml trunk/wao-web/src/main/java/fr/ifremer/wao/web/action/obsmer/EditNewsAction.java Modified: trunk/pom.xml =================================================================== --- trunk/pom.xml 2014-04-15 08:01:22 UTC (rev 1885) +++ trunk/pom.xml 2014-04-15 08:48:50 UTC (rev 1886) @@ -131,6 +131,7 @@ <javaVersion>1.7</javaVersion> <signatureArtifactId>java17</signatureArtifactId> <signatureVersion>1.0</signatureVersion> + <jsoupVersion>1.7.3</jsoupVersion> </properties> <repositories> @@ -347,6 +348,12 @@ </exclusions> </dependency> + <dependency> + <groupId>org.jsoup</groupId> + <artifactId>jsoup</artifactId> + <version>${jsoupVersion}</version> + </dependency> + </dependencies> </dependencyManagement> Modified: trunk/wao-web/pom.xml =================================================================== --- trunk/wao-web/pom.xml 2014-04-15 08:01:22 UTC (rev 1885) +++ trunk/wao-web/pom.xml 2014-04-15 08:48:50 UTC (rev 1886) @@ -158,6 +158,11 @@ <artifactId>postgresql</artifactId> </dependency> + <dependency> + <groupId>org.jsoup</groupId> + <artifactId>jsoup</artifactId> + </dependency> + </dependencies> <build> Modified: trunk/wao-web/src/main/java/fr/ifremer/wao/web/action/obsmer/EditNewsAction.java =================================================================== --- trunk/wao-web/src/main/java/fr/ifremer/wao/web/action/obsmer/EditNewsAction.java 2014-04-15 08:01:22 UTC (rev 1885) +++ trunk/wao-web/src/main/java/fr/ifremer/wao/web/action/obsmer/EditNewsAction.java 2014-04-15 08:48:50 UTC (rev 1886) @@ -28,6 +28,8 @@ import org.apache.commons.lang3.StringUtils; import org.apache.struts2.convention.annotation.Result; import org.apache.struts2.convention.annotation.Results; +import org.jsoup.Jsoup; +import org.jsoup.safety.Whitelist; @Results({ @Result(name="success", type="redirectAction", params = { "actionName", "news" }) @@ -36,6 +38,8 @@ private static final long serialVersionUID = 1L; + protected static final Whitelist WHITE_LIST = Whitelist.basicWithImages().addTags("h1", "h2", "h3"); + protected transient NewsService service; protected String newsId; @@ -66,6 +70,10 @@ @Override public String execute() { + //filtrage de news + String clean = Jsoup.clean(news.getContent(), WHITE_LIST); + news.setContent(clean); + service.save(news); addActionMessage(t("wao.ui.action.createNews.success"));