Hello,
I inherited an application that uses Mason on RHEL with apache. I have to
get this app Visa PCI (payment card industry) compliant and I have a plugin
to help prevent Cross Site Scripting
package HTML::Mason::Plugin::PreventCrossSite;
use base qw(HTML::Mason::Plugin);
sub start_request_hook {
my $self = shift;
my $context = shift;
my @clean_args;
foreach my $arg (@{ $context->args } ) {
$arg =~ s/[\<\>\"\'\%\;\)\(\&\+]//g;
push @clean_args, $arg;
}
@{$context->args} = @clean_args;
}
1;
How do I enable this plugin? Do I place a new file in the plugin directory?
Soon I will also have to move this app to a new version of apache as it also
failed the PCI scan.
Thx,
Eric
--
View this message in context:
http://www.nabble.com/Mason-Plugins-where-do-I-place-them---tf2047114.html#a5637497
Sent from the Perl Mason - Users forum at Nabble.com.
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys -- and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
Mason-users mailing list
Mason-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mason-users
