Lucee Function Reference

canonicalize()

Canonicalization is simply the operation of reducing a possibly encoded string down to its simplest form.
      This is important, because attackers frequently use encoding to change their input in a way that will bypass validation filters,
      but still be interpreted properly by the target of the attack.
      Note that data encoded more than once is not something that a normal user would generate and should be regarded as an attack.

Example

canonicalize(string input,boolean restrictMultiple,boolean restrictMixed,[boolean throwOnError]):string

Arguments

The arguments for this function are set. You can not use other arguments except the following ones.
Name Type Required Default Value Description
input string  Yes   the input string to encode  
restrictMultiple boolean  Yes   true if checking for multiple encoding is desired, false otherwise.  
restrictMixed boolean  Yes   true if checking for mixed encoding is desired, false otherwise  
throwOnError boolean  No false If the value of this argument is true, and if restrictMultiple or restrictMixed is true and the given input contains mixed or multiple encoded strings, an exception will be thrown.
If the value of this argument is false, an empty string will be returned instead of an exception.