Forum Discussion
Gursimrat
Leader
1. Yes, we have control over the data, it is hosted on the SOLR server.
2. Format could be xml, json
3. Displaying it via JavaScript, in the search results.
Basically, We need to add it on the custom search page.
2. Format could be xml, json
3. Displaying it via JavaScript, in the search results.
Basically, We need to add it on the custom search page.
nathan
11 years agoExecutive
Based on what you've said, I can't see you needing to do anything special to avoid XSS. There's nothing inherently insecure about making cross-site requests, and you control both the content and the mechanism for displaying it on the page.
I'd recommend getting someone knowledgeable to review the code if you have any concerns about it.
Related Content
- 4 years ago
- 10 years ago
- 8 years ago