struts-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Obinna <obi...@gmail.com>
Subject output encoding in struts 2
Date Wed, 08 Jul 2009 07:41:17 GMT
Hi,
This may be a silly question, but is it correct to say that the struts 2
output encoding is handled by the template type rendering engine. (for
example, the ?html or  in freemarker) other than some
special cases such as the UIBean.ensureAttributeSafelyNotEscaped()?

If this is the case, what about the other template types such as
javatemplates?

I'm trying to cover XSS issues in my jquery ajax plugin.

- Eric

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message