Here you can find the source of sanitizeInput(String string)
public static String sanitizeInput(String string)
//package com.java2s; /**//from ww w . j av a 2 s.com * OpenKM, Open Document Management System (http://www.openkm.com) * Copyright (c) 2006-2013 Paco Avila & Josep Llort * * No bytes were intentionally harmed during the development of this application. * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License along * with this program; if not, write to the Free Software Foundation, Inc., * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. */ public class Main { /** * Sanitize HTML * * @see http://www.rgagnon.com/javadetails/java-0627.html */ public static String sanitizeInput(String string) { return string.replaceAll("(?i)<script.*?>.*?</script.*?>", "") // case 1 - Open and close .replaceAll("(?i)<script.*?/>", "") // case 1 - Open / close .replaceAll("(?i)<script.*?>", "") // case 1 - Open and !close .replaceAll("(?i)<.*?javascript:.*?>.*?</.*?>", "") // case 2 - Open and close .replaceAll("(?i)<.*?javascript:.*?/>", "") // case 2 - Open / close .replaceAll("(?i)<.*?javascript:.*?>", "") // case 2 - Open and !close .replaceAll("(?i)<.*?\\s+on.*?>.*?</.*?>", "") // case 3 - Open and close .replaceAll("(?i)<.*?\\s+on.*?/>", "") // case 3 - Open / close .replaceAll("(?i)<.*?\\s+on.*?>", ""); // case 3 - Open and !close } }