Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
XSS Protection API 1.0.4
-
None
Description
By default AntiSamy enables the formatOutput policy directive [0], formatting markup sent to it. However this sometimes works against a developer's intention of outputting markup with Sightly.
[0] - https://owaspantisamy.googlecode.com/files/Developer%20Guide.pdf
Attachments
Issue Links
- is duplicated by
-
SLING-6959 XssProtection changes html semantic caused by formatting
- Resolved