Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
Re: whitelisting HTML tags
From: Tim (tim-securitysentinelchicken.org)
Date: Wed Nov 02 2005 - 10:17:33 CST
> This is exactly the sort of thing I'm looking for. Anyone know of any
> libraries (preferably in Java) that already do this?
I personally feel it is a bad idea to allow any HTML, but if it is a
requirement, you might be best off requiring users use XHTML tags. That
way you can create a restrictive XML DTD for them, and there are plenty
of tools out there that can enforce that.