]
Hardy Ferentschik updated HV-490:
---------------------------------
Affects Version/s: 4.2.0.CR1
Fix Version/s: 4.2.0.Final
Summary: Create @SafeHtml annotation (was: Create @WebSafe annotation)
Create @SafeHtml annotation
---------------------------
Key: HV-490
URL:
http://opensource.atlassian.com/projects/hibernate/browse/HV-490
Project: Hibernate Validator
Issue Type: Improvement
Affects Versions: 4.2.0.CR1
Reporter: George Gastaldi
Fix For: 4.2.0.Final
According to Shane Brizak statement on seam-dev list:
{quote}
Hi Gunnar,
I had an idea today for a new validation constraint called @WebSafe - in
summary what it would do is validate a rich text value provided by the
user to ensure that it contains no malicious code, such as embedded
<script> elements. The implementation for this would use JTidy to
convert the value to a DOM tree, after which it would walk the nodes of
the tree and locate any <script> tags, and if any are present the
validation would fail.
Anyway, the implementation isn't so important - what I was wondering
though is whether you think something like this would be useful to have
in the Seam Validation module. I tend to think that it would be (and we
can probably come up with quite a few other useful validation
constraints also) but I would like to know what you think about this.
Shane
{quote}
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: