Using AntiXss As The Default Encoder For ASP.NET

Posted on Dot net Slackers See other posts from Dot net Slackers
Published on Tue, 06 Apr 2010 00:00:00 GMT Indexed on 2010/04/07 16:53 UTC
Read the original article Hit count: 426

Filed under:
Scott Guthrie recently wrote about the new <%: %> syntax for HTML encoding output in ASP.NET 4. I also covered the topic of HTML encoding code nuggets in the past as well providing some insight into our design choices for the approach we took. A commenter to Scotts blog post asked, Will it be possible to extend this so that is uses libraries like AntiXSS instead? See: http://antixss.codeplex.com/ The answer is yes! ASP.NET 4 includes a new extensibility point which allows you to replace...

Did you know that DotNetSlackers also publishes .net articles written by top known .net Authors? We already have over 80 articles in several categories including Silverlight. Take a look: here.



Email this Article

© Dot net Slackers or respective owner