Portcullis

Class Portcullis

lucee.Component
    mura.Portcullis

This provides a utility to prevent injection attacks

Class Attributes:

output : false

synchronized : false

accessors : false

persistent : false

Constructor Summary
init([Struct settings])

Method Summary
`any`	badSQLContext(String sqlcmdword, String text)
`any`	cleanLog()
`any`	escapeChars(String text)
`any`	filterCRLF(String text)
`any`	filterSQL(String text, [any sqlFilter='[runtime expression]'])
`any`	filterTags(String text, [any tagFilter='[runtime expression]'])
`any`	filterWords(String text, [any wordFilter='[runtime expression]'])
`any`	getLog()
`any`	getSettings()
`any`	insertLog(String ipAddress)
`any`	isBlocked(String ipAddress)
`any`	isDetected()
`any`	isLogged(String ipAddress)
`any`	isSafeReferer()
`any`	isValidCFVariableName(String text)
`any`	removeIPfromLog(String ipAddress)
`private any`	removeNullChars(string theString)
`any`	scan(Struct object, String objectname, String ipAddress, [String exceptionFields], [any useWordFilter='false'], [any useSQLFilter='false'], [any useTagFilter='false'], [any pattern=''], [any fixValues='true'], [any tagFilter='[runtime expression]'], [any wordFilter='[runtime expression]'], [any sqlFilter='[runtime expression]'])
`any`	setlog(String ipAddress)
`any`	setSettings(Struct settings)
`any`	stripMSWord([any value])
`any`	stripMSWordFromArray([any value])
`any`	stripMSWordFromSimpleValue([any value])
`any`	stripMSWordFromStruct([any value])
`any`	updateLog(String ipAddress)

Methods inherited from class `lucee.Component`
None

Constructor Detail

init

public init([Struct settings])

Parameters:: settings

Method Detail

badSQLContext

public any badSQLContext(String sqlcmdword, String text)

Parameters:: sqlcmdword; text

cleanLog

public any cleanLog()

escapeChars

public any escapeChars(String text)

Parameters:: text

filterCRLF

public any filterCRLF(String text)

Parameters:: text

filterSQL

public any filterSQL(String text, [any sqlFilter='[runtime expression]'])

Parameters:: text; sqlFilter

filterTags

public any filterTags(String text, [any tagFilter='[runtime expression]'])

Parameters:: text; tagFilter

filterWords

public any filterWords(String text, [any wordFilter='[runtime expression]'])

Parameters:: text; wordFilter

getLog

public any getLog()

getSettings

public any getSettings()

insertLog

public any insertLog(String ipAddress)

Parameters:: ipAddress

isBlocked

public any isBlocked(String ipAddress)

Parameters:: ipAddress

isDetected

public any isDetected()

isLogged

public any isLogged(String ipAddress)

Parameters:: ipAddress

isSafeReferer

public any isSafeReferer()

isValidCFVariableName

public any isValidCFVariableName(String text)

Parameters:: text

removeIPfromLog

public any removeIPfromLog(String ipAddress)

Parameters:: ipAddress

removeNullChars

private any removeNullChars(string theString)

Parameters:: theString

scan

public any scan(Struct object, String objectname, String ipAddress, [String exceptionFields], [any useWordFilter='false'], [any useSQLFilter='false'], [any useTagFilter='false'], [any pattern=''], [any fixValues='true'], [any tagFilter='[runtime expression]'], [any wordFilter='[runtime expression]'], [any sqlFilter='[runtime expression]'])

Parameters:: object; objectname; ipAddress; exceptionFields; useWordFilter; useSQLFilter; useTagFilter; pattern; fixValues; tagFilter; wordFilter; sqlFilter

setlog

public any setlog(String ipAddress)

Parameters:: ipAddress

setSettings

public any setSettings(Struct settings)

Parameters:: settings

stripMSWord

public any stripMSWord([any value])

Parameters:: value

stripMSWordFromArray

public any stripMSWordFromArray([any value])

Parameters:: value

stripMSWordFromSimpleValue

public any stripMSWordFromSimpleValue([any value])

Parameters:: value

stripMSWordFromStruct

public any stripMSWordFromStruct([any value])

Parameters:: value

updateLog

public any updateLog(String ipAddress)

Parameters:: ipAddress