TechQA.

Xss Config for data attributes

320 views Asked by At

How to configure XSS-protection config.xml for data-* attributes. It is getting filtered. So far we are adding manually for each data-* attributes. Is there any way to have a generic fix?

For eg if we have <img data-src="url"/> we are adding like below.

<tag action="validate" name="img">
            <attribute name="data-src" onInvalid="removeTag">
                <regexp-list>
                    <regexp name="onsiteURL"/>
                    <regexp name="offsiteURL"/>
                </regexp-list>
            </attribute>
</tag>

Instead of this, any fix could provide in common? So that it will allow all data attributes?

java aem xss antisamy
Original Q&A
0

There are 0 answers

Related Questions in JAVA

Related Questions in AEM

Related Questions in XSS

Related Questions in ANTISAMY

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json

Trending Questions