SafeURLConverter (Jenkins core 2.303 API)

Skip navigation links

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

java.lang.Object
- com.thoughtworks.xstream.converters.basic.AbstractSingleValueConverter
- - com.thoughtworks.xstream.converters.basic.URLConverter
  - - jenkins.util.xstream.SafeURLConverter

All Implemented Interfaces:

com.thoughtworks.xstream.converters.ConverterMatcher, com.thoughtworks.xstream.converters.SingleValueConverter
```
@Restricted(value=org.kohsuke.accmod.restrictions.NoExternalUse.class)
public class SafeURLConverter
extends com.thoughtworks.xstream.converters.basic.URLConverter
```
Wrap the URL handler during deserialization into a specific one that does not generate DNS query on the hostname for URLStreamHandler.equals(URL, URL) or URLStreamHandler.hashCode(URL). Required to protect against SECURITY-637

Since:

2.121.3

- Constructor Summary
  
  Constructors
  Constructor and Description
  
  SafeURLConverter()
- Method Summary
  
  All Methods Instance Methods Concrete Methods
  Modifier and Type Method and Description
  
  Object fromString(String str)
  - Methods inherited from class com.thoughtworks.xstream.converters.basic.URLConverter
    canConvert
  - Methods inherited from class com.thoughtworks.xstream.converters.basic.AbstractSingleValueConverter
    toString
  - Methods inherited from class java.lang.Object
    clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - SafeURLConverter
```
public SafeURLConverter()
```
- Method Detail
  - fromString
```
public Object fromString(String str)
```
    Specified by:
    
    fromString in interface com.thoughtworks.xstream.converters.SingleValueConverter
    
    Overrides:
    
    fromString in class com.thoughtworks.xstream.converters.basic.URLConverter

Skip navigation links

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

Copyright © 2004–2021. All rights reserved.