com.googlecode.l10nmavenplugin.validators.property.JsValidator Maven / Gradle / Ivy
/*******************************************************************************
* Copyright (c) 2012 Romain Quinio (http://code.google.com/p/l10n-maven-plugin)
*
* Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
*
* The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
*
* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
******************************************************************************/
package com.googlecode.l10nmavenplugin.validators.property;
import java.util.List;
import java.util.regex.Matcher;
import java.util.regex.Pattern;
import org.apache.commons.lang.StringEscapeUtils;
import com.googlecode.l10nmavenplugin.log.L10nValidatorLogger;
import com.googlecode.l10nmavenplugin.model.L10nReportItem;
import com.googlecode.l10nmavenplugin.model.L10nReportItem.Type;
import com.googlecode.l10nmavenplugin.model.Property;
import com.googlecode.l10nmavenplugin.model.PropertyImpl;
import com.googlecode.l10nmavenplugin.validators.L10nValidator;
import com.googlecode.l10nmavenplugin.validators.PropertiesKeyConventionValidator;
/**
* Validator to check resource can be used inside a Javascript context. Then {@link HtmlValidator} is applied after Javascript unescaping.
*
* Some characters are forbidden in Javascript context:
*
* - Unescaped single quotes or double quotes, depending on how the resource is included in js. For instance with var text="
* - Newline character, as browser interpret these as end of js statement (even if there is no ;)
*
*
* @author romain.quinio
* @since 1.0
*
*/
public class JsValidator extends PropertiesKeyConventionValidator implements L10nValidator {
/**
* Validation of javascript escaping
*
* " \n \r are not allowed in js resources, as it would cause a script error.
*
* \\\\\" => Regex escaping => \\\" => Java String escaping => \"
*
* \\\\n => Regex escpaing => \\n => Java String escaping => \n
*/
private static final String JS_DOUBLE_QUOTED_VALIDATION_REGEXP = "^(?:[^\"]|\\\\\")*$";
private static final String JS_SINGLE_QUOTED_VALIDATION_REGEXP = "^(?:[^\']|\\\\\')*$";
private static final String JS_NEWLINE_VALIDATION_REGEXP = "^(?:[^\\n\\r]|\\\\n|\\\\r)*$";
protected static final Pattern JS_DOUBLE_QUOTED_VALIDATION_PATTERN = Pattern.compile(JS_DOUBLE_QUOTED_VALIDATION_REGEXP);
protected static final Pattern JS_SINGLE_QUOTED_VALIDATION_PATTERN = Pattern.compile(JS_SINGLE_QUOTED_VALIDATION_REGEXP);
protected static final Pattern JS_NEWLINE_VALIDATION_PATTERN = Pattern.compile(JS_NEWLINE_VALIDATION_REGEXP);
private final L10nValidator xhtmValidator;
private final boolean jsDoubleQuoted;
public JsValidator(L10nValidator xhtmValidator, L10nValidatorLogger logger, String[] jsKeys) {
this(true, xhtmValidator, logger, jsKeys);
}
public JsValidator(boolean jsDoubleQuoted, L10nValidator xhtmValidator, L10nValidatorLogger logger, String[] jsKeys) {
super(logger, jsKeys);
this.xhtmValidator = xhtmValidator;
this.jsDoubleQuoted = jsDoubleQuoted;
}
/**
* Validate js resource using regexp and then chain XHTML validation after unescaping
*
* ERROR if any js forbidden character is present.
*
* @param key
* @param message
* @param propertyName
* @return Number of errors
*/
public int validate(Property property, List reportItems) {
int nbErrors = 0;
// Check for quotes
Matcher m;
if (jsDoubleQuoted) {
m = JS_DOUBLE_QUOTED_VALIDATION_PATTERN.matcher(property.getMessage());
} else {
m = JS_SINGLE_QUOTED_VALIDATION_PATTERN.matcher(property.getMessage());
}
if (!m.matches()) {
nbErrors++;
L10nReportItem reportItem;
if (jsDoubleQuoted) {
reportItem = new L10nReportItem(Type.JS_DOUBLE_QUOTED_VALIDATION, "Double quoted js resources must not contain \"."
+ " Use single quotes, or escaping. Note that Properties silently drop \\ character before \", "
+ "so it mused be escaped as \\\\\" for proper js escaping", property, null);
} else {
reportItem = new L10nReportItem(Type.JS_SINGLE_QUOTED_VALIDATION, "Single quoted js resources must not contain '"
+ " Use double quotes, or escaping. Note that Properties silently drop \\ character before ', "
+ "so it mused be escaped as \\\\' for proper js escaping", property, null);
}
reportItems.add(reportItem);
logger.log(reportItem);
}
// Check for newline
m = JS_NEWLINE_VALIDATION_PATTERN.matcher(property.getMessage());
if (!m.matches()) {
nbErrors++;
L10nReportItem reportItem = new L10nReportItem(Type.JS_NEWLINE_VALIDATION,
"Js resources must not contain \\n nor \\r, since newline is interpreted by browsers as the end of javascript statement", property, null);
reportItems.add(reportItem);
logger.log(reportItem);
}
// Unescaped any javascript escaping before HTML validation.
String jsUnescapedMessage = StringEscapeUtils.unescapeJavaScript(property.getMessage());
Property jsUnescapedProperty = new PropertyImpl(property.getKey(), jsUnescapedMessage, property.getPropertiesFile());
// False positive if parameters are replaced client-side, and formatter does not follow MessageFormat ' escaping.
nbErrors += xhtmValidator.validate(jsUnescapedProperty, reportItems);
return nbErrors;
}
public boolean shouldValidate(Property property) {
return matches(property.getKey());
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy