关闭全球跨站脚本过滤的规范。控制器？ [英] Turn off Global XSS Filtering for spec. controller?

问题描述

我正在开发的项目有FB整合和我有Deautharization问题（当用户从​​他的授权的应用程序删除应用程序）

I'm developing project integrated with FB and I have problem with Deautharization (when user remove App from his Authorized Apps)

老问题：codeIgniter => Facebook应用取消授权

Old Question: CodeIgniter => Facebook App Deauthorization

EDIT2：我只是意识到了问题....

I just realized the problem....

|--------------------------------------------------------------------------
| Global XSS Filtering
|--------------------------------------------------------------------------
|
| Determines whether the XSS filter is always active when GET, POST or
| COOKIE data is encountered
|
*/
$config['global_xss_filtering'] = TRUE;

codeIgniter没有具体标记为隐藏值块POST请求......

CodeIgniter block POST requests that don't have specific token as hidden value...

所以，现在的问题是：我可以把它关闭特定的控制器？

So question now is : can I turn it off for specific controller ?

推荐答案

您可以禁用 global_xss_filtering 选择性地使用本指南：<一href=\"http://stackoverflow.com/questions/3788476/$c$cigniter-disable-xss-filtering-on-a-post-basis\">$c$cigniter - 在基础后禁用 XSS过滤

You can disable global_xss_filtering selectively using this guide: Codeigniter - Disable XSS filtering on a post basis

这篇关于关闭全球跨站脚本过滤的规范。控制器？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！