Hey,
Preventing XSS can be very easy or very difficult, depending on your
situation.
Simply put, if you have set up all encodings and MIME types properly, AND
you only use your custom component in the context of HTML, simply HTML
encoding should be enough. With "in the context of HTML", I mean, y
Simon,
If you use ResponseWriter.witeText(), any
Hi Simon,
Sorry I don't know if there is anything on Trinidad that does that for you
automatically, but you can check out the OWASP cheat sheet for XSS at [1].
Maybe this will help!
Regards,
Jakob
[1]
http://www.owasp.org/index.php/XSS_%28Cross_Site_Scripting%29_Prevention_Cheat_Sheet
2010/7/14
Hello,
I have received word that there is some trouble with my signature,
so I send the mail again, this time without it.
Best regards,
Simon Kulessa.
---
Hello,
I have written my own component to display messages inside a jsf page.
The component is based on the tr:messages Element.
My impleme
Hello,
I have received word that there is some trouble with my signature,
so I send the mail again, this time without it.
Best regards,
Simon Kulessa.
---
Hello,
I have written my own component to display messages inside a jsf page.
The component is based on the tr:messages Element.
My impleme
Hello,
I have written my own component to display messages inside a jsf page.
The component is based on the tr:messages Element.
My implementation of the renderer uses the following code to write the
message into the page.
//ResponseWriter writer
for(FacesMessag
6 matches
Mail list logo