ASP.NET请求验证 [英] ASP.NET Request Validation

问题描述

ASP.NET中的请求验证是什么意思?

what is meant by Request Validation in ASP.NET?

推荐答案

请求验证是ASP.NET的功能，
-防止服务器接受包含un-encoded HTML的内容.
此功能旨在帮助prevent some script-injection attacks，从而可以在不知不觉中将客户端脚本代码或HTML提交给服务器，进行存储，然后呈现给其他用户.

请参考:
请求验证-防止脚本攻击 [ ASP.NET请求验证和跨站点脚本 [使用ASP.NET 4.5检查请求验证 [ ^ ]

Request validation, a feature of ASP.NET,
-prevents the server from accepting content containing un-encoded HTML.
This feature is designed to help prevent some script-injection attacks whereby client script code or HTML can be unknowingly submitted to a server, stored, and then presented to other users.

Please refer:
Request Validation - Preventing Script Attacks[^]

ASP.NET Request Validation and Cross-Site Scripting[^]
Examining Request Validation with ASP.NET 4.5[^]

这篇关于ASP.NET请求验证的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！