06页面跳转有汉字报错
错误提示:
Invalid character found in the request target. The valid characters are defined in RFC 7230 and RFC 3986
增加字符转码
$("button#click").click(function(){
var title = document.getElementById("title").value;
var url = document.getElementById("url").value;
document.getElementById("title").value=encodeURI(title);
document.getElementById("url").value=encodeURI(url);
});
或者通过过滤器统一处理,以下是公共处理方法
/**
* Xss防护过滤处理
* @author
*/
public class XssHttpServletRequestWrapper extends HttpServletRequestWrapper {
* Xss防护过滤处理
* @author
*/
public class XssHttpServletRequestWrapper extends HttpServletRequestWrapper {
public XssHttpServletRequestWrapper(HttpServletRequest request) {
super(request);
}
super(request);
}
@Override
public String[] getParameterValues(String name) {
Whitelist whitelist = Whitelist.relaxed();
String[] params = super.getParameterValues(name);
if(params != null){
for (int i=0; i<params.length; i++) {
params[i] = Jsoup.clean(params[i], "",whitelist, new Document.OutputSettings().prettyPrint(false)).trim();
}
}
return params;
}
}
public String[] getParameterValues(String name) {
Whitelist whitelist = Whitelist.relaxed();
String[] params = super.getParameterValues(name);
if(params != null){
for (int i=0; i<params.length; i++) {
params[i] = Jsoup.clean(params[i], "",whitelist, new Document.OutputSettings().prettyPrint(false)).trim();
}
}
return params;
}
}
