java.lang.Object
io.sf.carte.echosvg.bridge.EmbededScriptSecurity
- All Implemented Interfaces:
ScriptSecurity
This implementation of the
ScriptSecurity interface only allows
scripts embeded in the document, i.e., scripts whith either the same URL as
the document (as for event attributes) or scripts embeded with the data
protocol.-
Field Summary
FieldsModifier and TypeFieldDescriptionstatic final Stringstatic final StringMessage when trying to load a script file and the Document does not have a URLstatic final StringMessage when trying to load a script that is not embeded in the document.protected SecurityExceptionThe exception is built in the constructor and thrown if not null and the checkLoadScript method is called. -
Constructor Summary
ConstructorsConstructorDescriptionEmbededScriptSecurity(String scriptType, ParsedURL scriptURL, ParsedURL docURL) -
Method Summary
Modifier and TypeMethodDescriptionvoidControls whether the script should be loaded or not.
-
Field Details
-
DATA_PROTOCOL
- See Also:
-
ERROR_CANNOT_ACCESS_DOCUMENT_URL
Message when trying to load a script file and the Document does not have a URL- See Also:
-
ERROR_SCRIPT_NOT_EMBEDED
Message when trying to load a script that is not embeded in the document.- See Also:
-
se
The exception is built in the constructor and thrown if not null and the checkLoadScript method is called.
-
-
Constructor Details
-
EmbededScriptSecurity
- Parameters:
scriptType- type of script, as found in the type attribute of the <script> element.scriptURL- url for the script, as defined in the script's xlink:href attribute. If that attribute was empty, then this parameter should be nulldocURL- url for the document into which the script was found.
-
-
Method Details
-
checkLoadScript
public void checkLoadScript()Controls whether the script should be loaded or not.- Specified by:
checkLoadScriptin interfaceScriptSecurity- Throws:
SecurityException- if the script should not be loaded.
-