How to relax Google Caja HTML Sanitizer? It's sanitizing too much
Question
I am using Google Caja HTML Sanitizer ( https://code.google.com/p/google-caja/wiki/JsHtmlSanitizer ), however it is sanitizing things I don't want it to.
Sometimes I want to input data in a format similar to:
Bob <Carpenter>
but this becomes:
Bob
1 answers
solution1
3 2015-02-04 03:41:38
Caja sanitizes HTML. <Carpenter> isn't valid HTML. Therefore, it gets sanitized.
If the data you're inputting isn't actually HTML, don't run it through Caja.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
How to whitelist tags with Google's Caja HTML Sanitizer under node.js?
google caja how to use
Google Caja: Sample html4 def file?
How much Javascript is too much?
How much javascript is too much
How to get AngularJS sanitizer to parse a block of html?
too much HTML in an ajax script?
Google caja - Block malicious code
How much is too much assertions in automation testing?
How much JSON is too much JSON?
Related Tags