From gunnar.morling at googlemail.com Sun Jun 12 06:31:15 2011 Content-Type: multipart/mixed; boundary="===============6148366343053272013==" MIME-Version: 1.0 From: Gunnar Morling To: seam-dev at lists.jboss.org Subject: Re: [seam-dev] Extended validation constraints Date: Sun, 12 Jun 2011 12:31:14 +0200 Message-ID: In-Reply-To: 4DF1EBD8.8030408@redhat.com --===============6148366343053272013== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Hi Shane, the @WebSafe constraint is a great idea. I'm not totally sure what the right place for it would be, though. The constraints we have in HV so far are independent from any application layer. @WebSafe would be the first one specific to the web layer. You mentioned possible other constraints, do you have something specific in mind already? Maybe it would also be a good idea to have a separate library exclusively for custom constraints which could be used from everywhere ("HV Commons" or similar). I'm also CC'ing Hardy and Kevin from the HV team. What do you guys think? There is already a pull request with the constraint at GitHub. We already have a CR for 4.2. If we decide to add @WebSafe to HV do you think we should add this in 4.2 or to the next release? --Gunnar 2011/6/10 Shane Bryzak : > Sure, if you think it's suitable. =C2=A0Seam Validation is based on HV an= yways. > > On 10/06/11 18:32, Emmanuel Bernard wrote: >> >> Why not in Hibernate Validator? >> >> On 10 juin 2011, at 10:02, Shane Bryzak wrote: >> >>> Hi Gunnar, >>> >>> I had an idea today for a new validation constraint called @WebSafe - in >>> summary what it would do is validate a rich text value provided by the >>> user to ensure that it contains no malicious code, such as embedded >>>