Rietveld Code Review Tool
Help | Bug tracker | Discussion group | Source code | Sign in
(176)
Issues Repositories Search
Open Issues | Closed Issues | All Issues | Sign in with your Google Account to create issues and add comments

Issue 2829041: Add JSONP support for REST and RPC API

Can't Edit
Can't Publish+Mail
Start Review
Created:
15 years, 5 months ago by bashofmann
Modified:
15 years, 5 months ago
Reviewers:
plindner1
Base URL:
http://svn.apache.org/repos/asf/shindig/trunk/
Visibility:
Public.

Description

see https://issues.apache.org/jira/browse/SHINDIG-1459

Patch Set 1 #

Unified diffs Side-by-side diffs Delta from patch set Stats (+55 lines, -9 lines) Patch
src/social/converters/OutputJsonConverter.php View 2 chunks +20 lines, -6 lines 0 comments Download
src/social/servlet/JsonRpcServlet.php View 3 chunks +17 lines, -3 lines 0 comments Download
test/social/OutputJsonConverterTest.php View 1 chunk +18 lines, -0 lines 0 comments Download

Messages

Total messages: 2
bashofmann
15 years, 5 months ago (2010-11-02 09:43:29 UTC) #1
plindner1
15 years, 5 months ago (2010-11-03 00:46:18 UTC) #2 
Looks good.

I highly recommend validation of the callback parameter for security. If you do
not validate this could be used to execute arbitrary javascript in the user's
browser (callback=alert();test for example)
Sign in to reply to this message.

Powered by Google App Engine
RSS Feeds Recent Issues | This issue
This is Rietveld f62528b