[Owasp-antisamy] Configure the allowed empty tags

Arshan Dabirsiaghi arshan.dabirsiaghi at aspectsecurity.com
Thu Jul 8 08:30:35 EDT 2010


Sure. If you can, try to make it work in both the SAX scanner and DOM scanner. That will speed up acceptance of the patch.
 
Arshan

________________________________

From: owasp-antisamy-bounces at lists.owasp.org on behalf of Paul Curren
Sent: Thu 7/8/2010 6:38 AM
To: owasp-antisamy at lists.owasp.org
Subject: [Owasp-antisamy] Configure the allowed empty tags



Hi there.

I have a slightly customised XHTML content that I want to protect with AntiSamy. I have few new tags for representing certain things and some of these are empty tags. Right now only the list of tags in Constants.allowedEmptyTags are preserved if empty.

What are your thoughts about making this list configurable? Perhaps in the policy file?

If that sounds like a reasonable idea to you, would the AntiSamy project accept a patch from me? :-)

Cheers,

Paul C
_______________________________________________
Owasp-antisamy mailing list
Owasp-antisamy at lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-antisamy


-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-antisamy/attachments/20100708/26293c6c/attachment.html 


More information about the Owasp-antisamy mailing list