Search Type: Posts; User: normanrichards
Search: Search took 0.01 seconds.
1 Dec 2011 12:46 PM
I don't believe it has. I didn't follow up on my earlier comments here because after doing the basic work to secure the Ext app I was working on, I moved on to work on another project that happened...
9 Aug 2010 5:55 AM
So far I haven't found anything in extjs that hasn't been relatively easy to make encode things correctly. The real challenge has just been figuring out what to do. There's a lot of noise...
6 Aug 2010 10:04 AM
This is not necessarily true, and it's completely irrelevant. First, HTML text *is* a valid data type, and there is no reason you shouldn't store it in the database if your type is HTML. When it...
6 Aug 2010 8:00 AM
6 Aug 2010 7:57 AM
Ok, so are you saying that no HTML unsafe data should ever be stored or sent to the client? (No "I <3 puppies" or "My favorite html tag is <blink>" -anything that could be potentially misunderstood...
6 Aug 2010 7:32 AM
6 Aug 2010 6:52 AM
Chods - how exactly do you disable encoding on MY browser? If the client properly encodes data from the server before inserting it into the html, where is the issue? Nobody cares what you do with...
6 Aug 2010 6:14 AM
Chods - I think you are confusing issues. Let's take the "I <3 puppies" example again. Is this a valid data value, perhaps for a user's display name in an application? It depends on your...
5 Aug 2010 5:44 PM
I will disagree, but only in an orthogonal way. You are correct that the server should validate data. However, that doesn't mean that the server should consider the presentation layer encoding...
5 Aug 2010 1:40 PM
Yeah - after an afternoon of digging deeper, it seems that htmlEncode is the answer. Adding ':htmlEncode' over all my XTemplates has been easy. Now I get to play with the trees and grids. ...
5 Aug 2010 7:32 AM
I absolutely agree that escaping data for HTML is a fundamental concern of an HTML presentation layer. Your data is not HTML, and when it is added to an HTML document it must be escaped. There is a...
Results 1 to 11 of 11