Radu Cotescu created SLING-5050: ----------------------------------- Summary: Disable AntiSamy's default formatOutput policy directive Key: SLING-5050 URL: https://issues.apache.org/jira/browse/SLING-5050 Project: Sling Issue Type: Bug Components: Extensions Affects Versions: XSS Protection API 1.0.4 Reporter: Radu Cotescu Assignee: Radu Cotescu Fix For: XSS Protection API 1.0.6
By default AntiSamy enables the {{formatOutput}} policy directive \[0\], formatting markup sent to it. However this sometimes works against a developer's intention of outputting markup with Sightly. \[0\] - https://owaspantisamy.googlecode.com/files/Developer%20Guide.pdf -- This message was sent by Atlassian JIRA (v6.3.4#6332)