From: MichaelMorris <michael.morris@est.tech>
Date: Tue, 29 Aug 2023 08:34:04 +0000 (+0100)
Subject: Escape '<' char before jsoup validation
X-Git-Tag: 1.13.4~19
X-Git-Url: https://gerrit.onap.org/r/gitweb?p=sdc.git;a=commitdiff_plain;h=2ceeaf89e5ec648de8e1496bdf67352c3edbf41a

Escape '<' char before jsoup validation

Signed-off-by: MichaelMorris <michael.morris@est.tech>
Issue-ID: SDC-4606
Change-Id: I3ef6f1c63dd8e86e0ed97ce4c0ba69339dd7d44a
---

diff --git a/common-app-api/src/main/java/org/openecomp/sdc/common/util/NoHtmlValidator.java b/common-app-api/src/main/java/org/openecomp/sdc/common/util/NoHtmlValidator.java
index 38d4e7d79b..31f866e232 100644
--- a/common-app-api/src/main/java/org/openecomp/sdc/common/util/NoHtmlValidator.java
+++ b/common-app-api/src/main/java/org/openecomp/sdc/common/util/NoHtmlValidator.java
@@ -32,6 +32,6 @@ public class NoHtmlValidator implements ConstraintValidator<NoHtml, String> {
 
     @Override
     public boolean isValid(String value, ConstraintValidatorContext ctx) {
-        return value == null || Jsoup.isValid(value, Safelist.none());
+        return value == null || Jsoup.isValid(Jsoup.parseBodyFragment(value).body().html(), Safelist.none());
     }
 }