AntiSamy EE

  • Security Disabled: This app has Liferay's PACL Security Manager disabled.
  • EE Only: Available to EE subscribers. Find out how to get a subscription.
  • Labs: This app is experimental and not supported by the developer.
Sanitizers act as a filtering element that "sanitize" web content (usually HTML or JavaScript code) so that it does not contain inappropriate content like malicious JavaScript code or inappropriate words. This app utilizes the OWASP AntiSamy functionality to provide default sanitization of user-supplied input (such as blog posts, forum posts, and other user-generated content). The OWASP AntiSamy project is an API for ensuring user-supplied HTML/CSS is in compliance within an application's rules. It is an API that helps you make sure that clients don't supply malicious cargo code in the HTML that they supply for their profile, comments, etc., that get persisted on the server. The term "malicious code" in regards to web applications usually mean "JavaScript." Cascading Stylesheets are only considered malicious when they invoke the JavaScript engine. However, there are many situations where "normal" HTML and CSS can be used in a malicious manner.

This layout will appear in your Page Layouts once installed.
Latest Changes
  • LPS-40913 Improve Ant build times by avoiding target calls and using macrodefs where possible
  • LPS-43599 Plugins SDK Environment builder for 6.2 generates as "master" instead of 6.2.x
  • LPS-43927 Remove plugins-security-manager-portlet from 6.2.x+
  • LPS-46730 Implement Groovy scripting into build tasks

Customers Who Viewed This Also Bought