Uploaded image for project: 'RESTEasy'
  1. RESTEasy
  2. RESTEASY-1553

MessageSanitizerContainerResponseFilter doesn't check the Content-Type header before escaping

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Blocker
    • 3.1.0.Final, 3.0.20.Final
    • None
    • None
    • None

    Description

      The MessageSanitizerContainerResponseFilter escapes all entities regardless of the Content-Type header. The header should probably be checked and only the HTML/XML only escaped on specific media types.

      Attachments

        Issue Links

          Activity

            People

              rsearls r searls
              jperkins-rhn James Perkins
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: