> > A bit OT but: > Is there any built in XSS protection built in some module in Catalyst? > I was thinking something like auth tokens one can add to the html only > known by the server and the loaded page, to protect private data sent > by JSON. Or isn't that secure enough? >
You have an example of what you need to protect against? If you are sending a JSON response to the client it's not really "private" -- any more than the html response. Guess, I don't understand your concern. -- Bill Moseley [email protected]
_______________________________________________ List: [email protected] Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst Searchable archive: http://www.mail-archive.com/[email protected]/ Dev site: http://dev.catalyst.perl.org/
