or even better when you create a texteditor you pass the field in which you'll do the editing of the value....simply you can set to the field a validator (eg. XSSValidator) that checks the correctness of the inserted value... byezzzz
2010/3/15 engram <[email protected]> > I wrote my own MyTreeEditor. Which methods do I have to override? I > can't figure out which methods are called on the TreeEditor or the > TextField that is used by the TreeEditor as the editor field. > > Any hints would be greatly appreciated. > > On 17 Feb., 13:02, Patrizio De Michele <[email protected]> wrote: > > you can make a customized treeeditor and check the code... > > if i have undestanded correctly the problem.. > > > > 2010/2/17 engram <[email protected]> > > > > > We have a TreePanel which can be edited in place via TreeEditor. How > > > can we avoid XSS, which can be done by a user writing something like > > > "<script>alert('Hello');</script>"? > > > > > In fact, the script tags seem not to be executed (tested with IE8 and > > > FF 3.5.7), but they are contained in the html and therefore we aren't > > > quite sure whether they aren't just coincidental. > > > > > Are there any docs or best practises about XSS in a TreePanel? In a > > > TreeGrid one can simply write your own Renderer(), but there's none in > > > a TreePanel/TreeNode. > > > > > -- > > > You received this message because you are subscribed to the Google > Groups > > > "GWT-Ext Developer Forum" group. > > > To post to this group, send email to [email protected]. > > > To unsubscribe from this group, send email to > > > [email protected]<gwt-ext%[email protected]> > <gwt-ext%[email protected]<gwt-ext%[email protected]> > > > > > . > > > For more options, visit this group at > > >http://groups.google.com/group/gwt-ext?hl=en. > > -- > You received this message because you are subscribed to the Google Groups > "GWT-Ext Developer Forum" group. > To post to this group, send email to [email protected]. > To unsubscribe from this group, send email to > [email protected]<gwt-ext%[email protected]> > . > For more options, visit this group at > http://groups.google.com/group/gwt-ext?hl=en. > > -- You received this message because you are subscribed to the Google Groups "GWT-Ext Developer Forum" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/gwt-ext?hl=en.
