public JsonResult PostComments(string comment) { HttpCookie uCookie = Request.Cookies["UserInfo"]; string from = null; if (uCookie != null) { UserInfo uinfo = JsonConvert.DeserializeObject <UserInfo>(uCookie.Value); if (uinfo != null) { from = uinfo.Email; } } string to = ConfigurationManager.AppSettings["FeedbackEmail"]; string fromEmail = string.IsNullOrWhiteSpace(from) ? null : from; AntiXssSanitizer.HtmlEncode(comment); EmailMessage message = new EmailMessage() { To = to, Subject = "Feedback", From = fromEmail }; message.Body = Server.UrlDecode(comment); new EmailHelper().Send(message, null, null, false); return(Json("Success")); }
/// <summary> /// Set the origin html string safty /// </summary> /// <param name="originHtmlString"></param> /// <param name="policy"></param> /// <returns></returns> public static string ToSafeHtmlString(this string originHtmlString, AntiXssPolicy policy) => AntiXssSanitizer.Sanitize(originHtmlString, policy);
/// <summary> /// Set the origin html string safty /// </summary> /// <param name="originHtmlString"></param> /// <param name="policyName"></param> /// <returns></returns> public static string ToSafeHtmlString(this string originHtmlString, string policyName) => AntiXssSanitizer.Sanitize(originHtmlString, policyName);
/// <summary> /// Set the origin html string safty /// </summary> /// <param name="originHtmlString"></param> /// <returns></returns> public static string ToSafeHtmlString(this string originHtmlString) => AntiXssSanitizer.Sanitize(originHtmlString);