diff options
author | Andrey Andreev <narf@devilix.net> | 2015-02-28 18:54:17 +0100 |
---|---|---|
committer | Andrey Andreev <narf@devilix.net> | 2015-02-28 18:54:17 +0100 |
commit | 9187ed3516ba403d09fc88ebcf6ead7364f75c4d (patch) | |
tree | 5078d32ca09047e266c86aa80e2acd4070c1b45d /user_guide_src/source/libraries | |
parent | 52caf59f244e0c1363ac0ce6ba61a7f5001603df (diff) |
[ci skip] Formally deprecate 'global_xss_filtering'
Diffstat (limited to 'user_guide_src/source/libraries')
-rw-r--r-- | user_guide_src/source/libraries/input.rst | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/user_guide_src/source/libraries/input.rst b/user_guide_src/source/libraries/input.rst index 274e49af4..d9c6c2dd1 100644 --- a/user_guide_src/source/libraries/input.rst +++ b/user_guide_src/source/libraries/input.rst @@ -53,6 +53,10 @@ this:: Please refer to the :doc:`Security class <security>` documentation for information on using XSS Filtering in your application. +.. important:: The 'global_xss_filtering' setting is DEPRECATED and kept + solely for backwards-compatibility purposes. XSS escaping should + be performed on *output*, not *input*! + ******************* Accessing form data ******************* |