com.threerings.gwt.ui.Anchor Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of gwt-utils Show documentation
Show all versions of gwt-utils Show documentation
Utilities for use in developing GWT applications.
The newest version!
//
// $Id$
//
// OOO GWT Utils - utilities for creating GWT applications
// Copyright (C) 2009-2010 Three Rings Design, Inc., All Rights Reserved
// http://code.google.com/p/ooo-gwt-utils/
//
// This library is free software; you can redistribute it and/or modify it
// under the terms of the GNU Lesser General Public License as published
// by the Free Software Foundation; either version 2.1 of the License, or
// (at your option) any later version.
//
// This library is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
// Lesser General Public License for more details.
//
// You should have received a copy of the GNU Lesser General Public
// License along with this library; if not, write to the Free Software
// Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
package com.threerings.gwt.ui;
import com.google.gwt.user.client.DOM;
import com.google.gwt.user.client.ui.Widget;
public class Anchor extends Widget
{
/**
* Create a new <a tag, with properly escaped contents.
*
* @param href the href attribute for the tag.
* @param text the inner text of this tag. It will have all of its HTML entities escaped
* automatically.
* @param target the frame target of the anchor.
* @param forceProtocol If true, http:// will be prepended if not already existing.
* This also has the effect of killing malicious "javascript:" links. It's a good idea to
* make this 'true' when displaying user specified URLs.
*/
public Anchor (String href, String text, String target, boolean forceProtocol)
{
_forceProtocol = forceProtocol;
setElement(DOM.createAnchor());
setHref(href);
setText(text);
if (target != null) {
setFrameTarget(target);
}
}
/**
* Create a new <a tag, with properly escaped contents.
*
* @param href the href attribute for the tag.
* @param text the inner text of this tag. It will have all of its HTML entities escaped
* automatically.
* @param target the frame target of the anchor.
*/
public Anchor (String href, String text, String target)
{
this(href, text, target, false);
}
/**
* Create a new <a tag, with properly escaped contents.
*
* @param href the href attribute for the tag.
* @param text the inner text of this tag. It will have all of its HTML entities escaped
* automatically.
*/
public Anchor (String href, String text)
{
this(href, text, null);
}
/**
* Create an empty <a tag.
*/
public Anchor ()
{
setElement(DOM.createAnchor());
}
/**
* Set the href location.
*/
public void setHref (String href)
{
if (_forceProtocol) {
// This will correct URLs that don't have http:// as well
// as provide protection against JS injection
if ( ! href.matches("^\\s*\\w+://.*")) {
href = "http://" + href;
}
} else {
// Always do some sort of JS protection
if (href.trim().toLowerCase().startsWith("javascript:")) {
// He's been a naughty boy
href = "#";
}
}
DOM.setElementProperty(getElement(), "href", href);
}
/**
* Set the inner text. The text will have all of its HTML entities escaped automatically.
*/
public void setText (String text)
{
// by using DOM methods, there is magically no need to escape most things.
DOM.setInnerText(getElement(), text);
}
/**
* Sets this anchor's text as raw HTML. No escaping is done, so be careful.
*/
public void setHTML (String html)
{
DOM.setInnerHTML(getElement(), html);
}
/**
* Sets the frame target for this anchor.
*/
public void setFrameTarget (String target)
{
DOM.setElementProperty(getElement(), "target", target);
}
protected boolean _forceProtocol;
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy