Not a problem... http://javawebparts.sourceforge.net/javadocs/index.html
In the javawebparts.filter package, you should see the CrossSiteScriptingFilter. This will filter any incoming parameters, and optionally attributes (good for if your forwarding somewhere) for a list of characters (you can alter what it looks for via regex). -- Frank W. Zammetti Founder and Chief Software Architect Omnytex Technologies http://www.omnytex.com On Mon, July 18, 2005 3:44 pm, Laurie Harper said: > Thanks; I had a quick hunt through the Javadocs but couldn't see anything > relevant. Can you give me a push in the right direction? ;-) > > L. > > Frank W. Zammetti wrote: > >> I have one as part of Java Web Parts >> (http://javawebparts.sourceforge.net). Let me know if it suits your >> needs >> (and if not, let me know the shortcomings so I can expand it!) >> >> -- >> Frank W. Zammetti >> Founder and Chief Software Architect >> Omnytex Technologies >> http://www.omnytex.com >> >> On Mon, July 18, 2005 2:28 pm, Laurie Harper said: >> >>>Does anyone know of a good, complete implementation of a cross-site >>>scripting filter for pre-processing user entered text that needs to be >>>rendered as HTML? Obviously <c:out/> / ${fn:escapeXml()} / etc. aren't >>> the >>>right solution ;-) but there's nothing in standard JSTL or Struts (that >>> I >>>know of) that is. >>> >>>Any pointers appreciated! >>> >>>L. >>>-- >>>Laurie, Open Source advocate, Java geek and novice blogger: >>>http://www.holoweb.net/laurie >>> >>> >>>--------------------------------------------------------------------- >>>To unsubscribe, e-mail: [EMAIL PROTECTED] >>>For additional commands, e-mail: [EMAIL PROTECTED] >>> >>> > > > -- > Laurie, Open Source advocate, Java geek and novice blogger: > http://www.holoweb.net/laurie > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]