XMLReaderFactoryUtil (wildfly-common 1.6.0.Final API)

java.lang.Object
- org.wildfly.common.xml.XMLReaderFactoryUtil

```
public final class XMLReaderFactoryUtil
extends java.lang.Object
```
Factory provides XMLReaderFactory with secure defaults set. Properties not supported generate a warning, but the factory process creation will continue and return a result. Settings based on recommendations of Sonarcloud RSPEC-2755 and OWASP XML External Entity Prevention Cheatsheet.
- FactoryConstants.APACHE_DISALLOW_DOCTYPE_DECL is set to true.
- FactoryConstants.APACHE_LOAD_EXTERNAL_DTD is set to false.
- FactoryConstants.XML_EXTERNAL_GENERAL_ENTITIES is set to false.
- FactoryConstants.XML_EXTERNAL_PARAMETER_ENTITIES is set to false.
Since:

1.6.0.Final

Author:

Boris Unckel

- Method Summary
  
  All Methods Static Methods Concrete Methods
  Modifier and Type Method Description
  
  static org.xml.sax.XMLReader create()
  Factory generated with secure defaults.
  - Methods inherited from class java.lang.Object
    clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Method Detail
  - create
```
@NotNull
public static org.xml.sax.XMLReader create()
                                    throws org.xml.sax.SAXException
```
    Factory generated with secure defaults.
    
    Returns:
    
    an instance of the XMLInputFactory.
    
    Throws:
    
    org.xml.sax.SAXException