You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@shindig.apache.org by "Kevin Brown (JIRA)" <ji...@apache.org> on 2009/02/03 02:43:59 UTC
[jira] Resolved: (SHINDIG-896) Simplified content sanitizer.
[ https://issues.apache.org/jira/browse/SHINDIG-896?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Kevin Brown resolved SHINDIG-896.
---------------------------------
Resolution: Fixed
Applied
> Simplified content sanitizer.
> -----------------------------
>
> Key: SHINDIG-896
> URL: https://issues.apache.org/jira/browse/SHINDIG-896
> Project: Shindig
> Issue Type: Improvement
> Components: Gadget Rendering Server (Java)
> Affects Versions: trunk
> Reporter: Kevin Brown
> Assignee: Kevin Brown
> Priority: Minor
> Fix For: trunk
>
> Attachments: sanitize.patch
>
>
> We've had requests to support a 'simple' markup sanitizer that only deals with the basics (HTML and CSS). Unlike caja, which aims to make javascript 'safe', this is a pretty trivial operation and produces markup that is suitable for many situations, like profile pages, where security and performance are a top concern.
> Patch attached.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.