关闭全球跨站脚本过滤的规范。控制器? [英] Turn off Global XSS Filtering for spec. controller?
问题描述
我正在开发的项目有FB整合和我有Deautharization问题(当用户从他的授权的应用程序删除应用程序)
I'm developing project integrated with FB and I have problem with Deautharization (when user remove App from his Authorized Apps)
老问题:codeIgniter => Facebook应用取消授权
Old Question: CodeIgniter => Facebook App Deauthorization
EDIT2:我只是意识到了问题....
I just realized the problem....
|--------------------------------------------------------------------------
| Global XSS Filtering
|--------------------------------------------------------------------------
|
| Determines whether the XSS filter is always active when GET, POST or
| COOKIE data is encountered
|
*/
$config['global_xss_filtering'] = TRUE;
codeIgniter没有具体标记为隐藏值块POST请求......
CodeIgniter block POST requests that don't have specific token as hidden value...
所以,现在的问题是:我可以把它关闭特定的控制器?
So question now is : can I turn it off for specific controller ?
推荐答案
您可以禁用 global_xss_filtering
选择性地使用本指南:<一href=\"http://stackoverflow.com/questions/3788476/$c$cigniter-disable-xss-filtering-on-a-post-basis\">$c$cigniter - 在基础后禁用 XSS过滤
You can disable global_xss_filtering
selectively using this guide: Codeigniter - Disable XSS filtering on a post basis
这篇关于关闭全球跨站脚本过滤的规范。控制器?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!