ESAPI - Securing Java Applications

Securing Java Apps using ESAPI

1. Add maven entries:
<dependency>
    <groupId>org.owasp.esapi</groupId>
    <artifactId>esapi</artifactId>
    <version>2.1.0</version>
</dependency>



2. Add ESAPI.properties and validation.properties inside src/main/resources
     http://owasp-esapi-java.googlecode.com/svn/trunk/configuration/esapi/ESAPI.properties
http://owasp-esapi-java.googlecode.com/svn/trunk/configuration/esapi/validation.properties

3.  Create class as an access point

public final class OracleEncoder {
   //private static final Code ORACLE_CODEC = new OracleCodec();

  public static String encode(String value) {
    return ESAPI.encoder().encodeForSQL(ORACLE_CODEC, value);
  }
}