From 6d102fba1e0c203c3d9ff7d1ed4cae0b0a9b0bce Mon Sep 17 00:00:00 2001 From: Harry Smith Date: Tue, 13 Sep 2022 08:22:12 +0100 Subject: [PATCH] DWN-41034 : upgrade JSoup to 1.15.3 --- .../org/mitre/openid/connect/web/UserInfoInterceptor.java | 6 +++--- pom.xml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/openid-connect-common/src/main/java/org/mitre/openid/connect/web/UserInfoInterceptor.java b/openid-connect-common/src/main/java/org/mitre/openid/connect/web/UserInfoInterceptor.java index 92aab1cd18..f76b8a13e6 100644 --- a/openid-connect-common/src/main/java/org/mitre/openid/connect/web/UserInfoInterceptor.java +++ b/openid-connect-common/src/main/java/org/mitre/openid/connect/web/UserInfoInterceptor.java @@ -26,7 +26,7 @@ import javax.servlet.http.HttpServletResponse; import org.jsoup.Jsoup; -import org.jsoup.safety.Whitelist; +import org.jsoup.safety.Safelist; import org.mitre.openid.connect.model.Address; import org.mitre.openid.connect.model.OIDCAuthenticationToken; import org.mitre.openid.connect.model.UserInfo; @@ -54,7 +54,7 @@ */ public class UserInfoInterceptor extends HandlerInterceptorAdapter { - private final Whitelist whitelist = Whitelist.none(); + private final Safelist safelist = Safelist.none(); private Gson gson = new GsonBuilder() .registerTypeHierarchyAdapter(GrantedAuthority.class, new JsonSerializer() { @@ -145,7 +145,7 @@ private void sanitiseUserInfo(final UserInfo userInfo) { private String sanitise(String elementToClean) { if (elementToClean != null) { - return Jsoup.clean(elementToClean, whitelist); + return Jsoup.clean(elementToClean, safelist); } return null; } diff --git a/pom.xml b/pom.xml index 8e255f497b..ec85256fb8 100644 --- a/pom.xml +++ b/pom.xml @@ -613,7 +613,7 @@ org.jsoup jsoup - 1.14.2 + 1.15.3 commons-codec