Added validation of IP addressed. JM-380

git-svn-id: http://svn.igniterealtime.org/svn/repos/messenger/trunk@2714 b35dd754-fafc-0310-a699-88a17e54d16e

Added validation of IP addressed. JM-380
git-svn-id: http://svn.igniterealtime.org/svn/repos/messenger/trunk@2714 b35dd754-fafc-0310-a699-88a17e54d16e
7cbdfe05 · Gaston Dombiak · gato · 2c9c3550 · 7cbdfe05
Commit 7cbdfe05 authored Aug 24, 2005 by Gaston Dombiak Committed by gato Aug 24, 2005
Show whitespace changes
Inline Side-by-side

Showing with 7 additions and 1 deletion

reg-settings.jsp src/web/reg-settings.jsp +7 -1

No files found.
--- a/src/web/reg-settings.jsp
+++ b/src/web/reg-settings.jsp
@@ -17,6 +17,7 @@
                 org.jivesoftware.util.*"
    errorPage="error.jsp"
 %>
+<%@ page import="java.util.regex.Pattern"%>

 <%@ taglib uri="http://java.sun.com/jstl/core_rt" prefix="c" %>
 <%@ taglib uri="http://java.sun.com/jstl/fmt_rt" prefix="fmt" %>
@@ -54,12 +55,17 @@
        authHandler.setAllowAnonymous(anonLogin);

        // Build a Map with the allowed IP addresses
+        Pattern pattern = Pattern.compile("(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\\.)" +
+                "(?:(?:\\*|25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\\.){2}" +
+                "(?:\\*|25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)");
        Map<String,String> newMap = new HashMap<String,String>();
        StringTokenizer tokens = new StringTokenizer(allowedIPs, ", ");
        while (tokens.hasMoreTokens()) {
            String address = tokens.nextToken().trim();
+            if (pattern.matcher(address).matches()) {
                newMap.put(address, "");
            }
+        }
        ClientSession.setAllowedIPs(newMap);
    }