You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@shindig.apache.org by "Kevin Brown (JIRA)" <ji...@apache.org> on 2009/02/03 02:43:59 UTC

[jira] Resolved: (SHINDIG-896) Simplified content sanitizer.

     [ https://issues.apache.org/jira/browse/SHINDIG-896?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Kevin Brown resolved SHINDIG-896.
---------------------------------

    Resolution: Fixed

Applied

> Simplified content sanitizer.
> -----------------------------
>
>                 Key: SHINDIG-896
>                 URL: https://issues.apache.org/jira/browse/SHINDIG-896
>             Project: Shindig
>          Issue Type: Improvement
>          Components: Gadget Rendering Server (Java)
>    Affects Versions: trunk
>            Reporter: Kevin Brown
>            Assignee: Kevin Brown
>            Priority: Minor
>             Fix For: trunk
>
>         Attachments: sanitize.patch
>
>
> We've had requests to support a 'simple' markup sanitizer that only deals with the basics (HTML and CSS). Unlike caja, which aims to make javascript 'safe', this is a pretty trivial operation and produces markup that is suitable for many situations, like profile pages, where security and performance are a top concern.
> Patch attached.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.