Joel Richard created SLING-4584:
-----------------------------------
Summary: Performance: XSSAPI.getValidHref should not be based on
HTML filtering
Key: SLING-4584
URL: https://issues.apache.org/jira/browse/SLING-4584
Project: Sling
Issue Type: Improvement
Affects Versions: XSS Protection API 1.0.2
Reporter: Joel Richard
Around 3% of the rendering time is spent in getValidHref because it uses
AntiSamy (which is a HTML filter) to do the job. This is obviously a hack and
adds a lot of unnecessary overhead.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
