esapi-java-legacy icon indicating copy to clipboard operation
esapi-java-legacy copied to clipboard

Published 20 hours ago verified publisher icon ESAPI

configuration should allow optional auto-cannonicalization before encoding.

Open meg23 opened this issue 10 years ago • 2 comments

From [email protected] on March 24, 2011 19:05:13

Sometimes it is difficult to know when data has been previously encoded so to avoid double encoding having a decode/cannonicalization step before encoding.

Note:Data may have been triple or quadruple encoded - either maliciously or accidentally.

Note:This needs to be very lean code to minimize performance impact.

Original issue: http://code.google.com/p/owasp-esapi-java/issues/detail?id=216

meg23 avatar Nov 13 '14 18:11 meg23

From [email protected] on November 13, 2014 10:19:52

Labels: Type-Task

meg23 avatar Nov 13 '14 18:11 meg23

@kwwall I can't make heads nor tails of what this question is getting at. Albeit, I've used this API for years, neither the title nor the description seem to reflect what I've come to learn about our encoding.

xeno6696 avatar Aug 06 '17 18:08 xeno6696