DICSS icon indicating copy to clipboard operation
DICSS copied to clipboard
verified publisher icon letsgetrandy

unsafe for use in front and back ends during same session

Open redengin opened this issue 10 years ago • 3 comments

The users are reporting serious infections.

redengin avatar Mar 22 '15 20:03 redengin

I haven't seen this use case except in production. Its usually the user-agent trying to enhance the content. In real user mode I don't think you'll see this issue.

fetalerror avatar Mar 23 '15 00:03 fetalerror

Thanks for the advice in exploring the user-agent. I think I've found a workaround for most user-agents. I've added a sanitize method after the pullOut from the back-end. The user-agent is happy, since the end result is one continuous set of content, as the sanitize step is nearly undetectable.

Currently my sanitize step is hardcoded for production, but if there were some way to detect that DICSS had been used in the back-end it'd be simple to add a conditional to the body.ready() prior to putIn. This would make this use-case safer for non-production environments.

redengin avatar Mar 23 '15 02:03 redengin

This shouldn't be a problem if you use separate wrappers for your front-end and back-end.

ghost avatar Mar 23 '15 03:03 ghost