Class FileSecurityUtil
- java.lang.Object
-
- jetbrains.buildServer.controllers.FileSecurityUtil
-
public abstract class FileSecurityUtil extends Object
- Author:
- Maxim Podkolzine (maxim.podkolzine@jetbrains.com)
-
-
Constructor Summary
Constructors Constructor Description FileSecurityUtil()
-
Method Summary
All Methods Static Methods Concrete Methods Modifier and Type Method Description static voidcheckInsideDirectory(File destinationFile, File allowedDirectory)Checks thatdestinationFileis inside theallowedDirectory.static voidcheckSecurityViolation(String fileName, AuthorityHolder currentAuthHolder)Checks thatfileNameis a correct relative file name.
-
-
-
Method Detail
-
checkSecurityViolation
public static void checkSecurityViolation(@NotNull String fileName, AuthorityHolder currentAuthHolder)Checks thatfileNameis a correct relative file name.- Parameters:
fileName- the relative name of filecurrentAuthHolder- current authority holder
-
checkInsideDirectory
public static void checkInsideDirectory(@NotNull File destinationFile, @NotNull File allowedDirectory)Checks thatdestinationFileis inside theallowedDirectory. The message of the exception thrown should not be shown to users as it exposes server paths.- Parameters:
destinationFile- the destination fileallowedDirectory- allowed directory
-
-