I'm using Tap3 and am soliciting opinions on a good method for preventing XSS (Cross-Site Scripting) and ugly HTML from being input and displayed on my Tapestry application.
* Is there any facility for this in Tapestry that I haven't found yet that's leverageable? * Do you prefer a solution that would filter out any erronious HTML markup you input silently? * Or, one that would tell you "I can't accept this, as it contains non-whitelisted/blacklisted markup tags" and then forces you to go back and clean up your post? * Are there any good libraries to help with this that you can think of? * Would you prefer to never have to accept HTML markup in your app and instead rely on something else, like "wiki markup" or "textile"? Thanks in advance for your time and feedback. Brian Duchek --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
