Enum XssConfiguration.XssMode
Namespace: WaCore.Web.Middleware.SecureHeaders.Models
Assembly: WaCore.Web.dll
Syntax
public enum XssModeFields
| Name | Description |
|---|---|
| one | Enables XSS filtering (usually default in browsers). If a cross-site scripting attack is detected, the browser will sanitize the page (remove the unsafe parts) |
| oneBlock | Enables XSS filtering. Rather than sanitizing the page, the browser will prevent rendering of the page if an attack is detected |
| oneReport | Enables XSS filtering. If a cross-site scripting attack is detected, the browser will sanitize the page and report the violation. This uses the functionality of the CSP report-uri directive to send a report |
| zero | Disables XSS filtering |