Class FileSecurityUtil
- java.lang.Object
-
- jetbrains.buildServer.controllers.FileSecurityUtil
-
public abstract class FileSecurityUtil extends java.lang.Object
- Author:
- Maxim Podkolzine (maxim.podkolzine@jetbrains.com)
-
-
Constructor Summary
Constructors Constructor Description FileSecurityUtil()
-
Method Summary
All Methods Static Methods Concrete Methods Modifier and Type Method Description static void
checkInsideDirectory(java.io.File destinationFile, java.io.File allowedDirectory)
Checks thatdestinationFile
is inside theallowedDirectory
.static void
checkSecurityViolation(java.lang.String fileName, AuthorityHolder currentAuthHolder)
Checks thatfileName
is a correct relative file name.
-
-
-
Method Detail
-
checkSecurityViolation
public static void checkSecurityViolation(@NotNull java.lang.String fileName, AuthorityHolder currentAuthHolder)
Checks thatfileName
is a correct relative file name.- Parameters:
fileName
- the relative name of filecurrentAuthHolder
- current authority holder
-
checkInsideDirectory
public static void checkInsideDirectory(@NotNull java.io.File destinationFile, @NotNull java.io.File allowedDirectory)
Checks thatdestinationFile
is inside theallowedDirectory
. The message of the exception thrown should not be shown to users as it exposes server paths.- Parameters:
destinationFile
- the destination fileallowedDirectory
- allowed directory
-
-