Class FileSecurityUtil


  • public abstract class FileSecurityUtil
    extends Object
    Author:
    Maxim Podkolzine (maxim.podkolzine@jetbrains.com)
    • Constructor Detail

      • FileSecurityUtil

        public FileSecurityUtil()
    • Method Detail

      • checkSecurityViolation

        public static void checkSecurityViolation​(@NotNull
                                                  String fileName,
                                                  AuthorityHolder currentAuthHolder)
        Checks that fileName is a correct relative file name.
        Parameters:
        fileName - the relative name of file
        currentAuthHolder - current authority holder
      • checkInsideDirectory

        public static void checkInsideDirectory​(@NotNull
                                                File destinationFile,
                                                @NotNull
                                                File allowedDirectory)
        Checks that destinationFile is inside the allowedDirectory. The message of the exception thrown should not be shown to users as it exposes server paths.
        Parameters:
        destinationFile - the destination file
        allowedDirectory - allowed directory