Documentation
¶
Index ¶
- Variables
- func IsSSRFError(err error) bool
- func IsValidWebURL(u *url.URL) bool
- func SanitizeHTML(html string) string
- func SanitizeHTMLStrict(html string) string
- func SanitizeUserContent(html string) string
- func ValidateURL(rawURL string) error
- func ValidateURLWithContext(ctx context.Context, rawURL string) error
- func ValidateURLWithOptions(ctx context.Context, rawURL string, allowPrivateNetworks bool) error
- type URLValidationError
Constants ¶
This section is empty.
Variables ¶
View Source
var ( // StrictSanitizer allows only basic text formatting tags StrictSanitizer = bluemonday.StrictPolicy() // ArticleSanitizer allows common article formatting but removes dangerous elements ArticleSanitizer = createArticlePolicy() // UGCSanitizer for user-generated content with moderate restrictions UGCSanitizer = bluemonday.UGCPolicy() )
Functions ¶
func IsSSRFError ¶
IsSSRFError checks if the error is related to SSRF protection
func IsValidWebURL ¶
IsValidWebURL performs basic validation for web URLs (less strict than ValidateURL)
func SanitizeHTML ¶
SanitizeHTML sanitizes HTML content for safe display
func SanitizeHTMLStrict ¶
SanitizeHTMLStrict uses strict sanitization (text only)
func SanitizeUserContent ¶
SanitizeUserContent sanitizes user-generated content
func ValidateURL ¶
ValidateURL performs comprehensive URL validation for security DEPRECATED: This method uses context.Background() which prevents proper timeout control. Use ValidateURLWithContext instead.
func ValidateURLWithContext ¶
ValidateURLWithContext performs comprehensive URL validation for security with context support
Types ¶
type URLValidationError ¶
URLValidationError represents URL validation errors
func (*URLValidationError) Error ¶
func (e *URLValidationError) Error() string
Source Files
Click to show internal directories.
Click to hide internal directories.