The url detector is a library created by the Linkedin Security Team to detect and extract urls in a long piece of text.
It is able to find and detect any urls such as:
- HTML 5 Scheme - //www.linkedin.com
- Usernames - user:[email protected]
- Email - [email protected]
- IPv4 Address - 192.168.1.1/hello.html
- IPv4 Octets - 0x00.0x00.0x00.0x00
- IPv4 Decimal - http://123123123123/
- IPv6 Address - ftp://[::]/hello
- IPv4-mapped IPv6 Address - http://[fe30:4:3:0:192.3.2.1]/
Note: Keep in mind that for security purposes, its better to overdetect urls and check more against blacklists than to not detect a url that was submitted. As such, some things that we detect might not be urls but somewhat look like urls. Also, instead of complying with RFC 3986 (http://www.ietf.org/rfc/rfc3986.txt), we try to detect based on browser behavior, optimizing detection for urls that are visitable through the address bar of Chrome, Firefox, Internet Explorer, and Safari.
It is also able to identify the parts of the identified urls. For example, for the url: http://[email protected]:39000/hello?boo=ff#frag
- Scheme - "http"
- Username - "user"
- Password - null
- Host - "linkedin.com"
- Port - 39000
- Path - "/hello"
- Query - "?boo=ff"
- Fragment - "#frag"
Using the URL detector library is simple. Simply import the UrlDetector object and give it some options. In response, you will get a list of urls which were detected.
For example, the following code will find the url linkedin.com
UrlDetector parser = new UrlDetector("hello this is a url Linkedin.com", UrlDetectorOptions.Default);
List<Url> found = parser.detect();
for(Url url : found) {
System.out.println("Scheme: " + url.getScheme());
System.out.println("Host: " + url.getHost());
System.out.println("Path: " + url.getPath());
}
Depending on your input string, you may want to handle certain characters in a special way. For example if you are parsing HTML, you probably want to break out of things like quotes and brackets. For example, if your input looks like
You probably want to make sure that the quotes and brackets are extracted. For that reason, using UrlDetectorOptions
will allow you to change the sensitivity level of detection based on your expected input type. This way you can detect
linkedin.com
instead of linkedin.com</a>
.
In code this looks like:
UrlDetector parser = new UrlDetector("<a href="linkedin.com/abc">linkedin.com</a>", UrlDetectorOptions.HTML);
List<Url> found = parser.detect();
This library was written by the security team and Linkedin when other options did not exist. Some of the primary authors are:
- Vlad Shlosberg ([email protected])
- Tzu-Han Jan ([email protected])
- Yulia Astakhova ([email protected])
####TestNG
- http://testng.org/
- Copyright © 2004-2014 Cédric Beust
- License: Apache 2.0
####Apache CommonsLang3: org.apache.commons:commons-lang3:3.1
- http://commons.apache.org/proper/commons-lang/
- Copyright © 2001-2014 The Apache Software Foundation
- License: Apache 2.0
Copyright 2015 LinkedIn Corp. All rights reserved.
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the license at http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.