How to use Microsoft AntiXss 4.x?
Question
I want to use the new version of the AntiXss library from Microsoft. I downloaded it from the Nuget package but I'm not sure where should I go from here. No documentation is provided for the library and all the articles I find on the Web are old. Since a lot has changed and pretty much everything I want to use is marked as deprecated in the library itself, I wonder which is the best way to use this library?
- Should I make it my default encoder?
- Should I modify all the views to use
Microsoft.Security.Application.AntiXss.HtmlEncode()and such? - Both maybe?
Any help would be appreciated.
3 answers
solution1
1 2015-04-08 15:22:40
Take a look at this answer to "Why use Microsoft AntiXSS library?" for a hint to get you started.
solution2
0 2017-05-05 23:18:30
using System.Web.Security.AntiXss;
string a = AntiXssEncoder.XmlAttributeEncode(text);
solution3
0 2019-11-06 10:55:55
Regarding Microsoft.Security.Application.AntiXss being deprecated, Microsoft advises to use Microsoft.Security.Application.Encoder instead. It's a static class inside the same library as the AntiXss class.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.