Using AntiXss As The Default Encoder For ASP.NET
Posted
on Dot net Slackers
See other posts from Dot net Slackers
Published on Tue, 06 Apr 2010 00:00:00 GMT
Indexed on
2010/04/07
16:53 UTC
Read the original article
Hit count: 421
Filed under:
Scott Guthrie recently wrote about the new <%: %> syntax for HTML encoding output in ASP.NET 4. I also covered the topic of HTML encoding code nuggets in the past as well providing some insight into our design choices for the approach we took. A commenter to Scotts blog post asked, Will it be possible to extend this so that is uses libraries like AntiXSS instead? See: http://antixss.codeplex.com/ The answer is yes! ASP.NET 4 includes a new extensibility point which allows you to replace...
Did you know that DotNetSlackers also publishes .net articles written by top known .net Authors? We already have over 80 articles in several categories including Silverlight. Take a look: here.
© Dot net Slackers or respective owner