public JsonResult PostComments(string comment)
{
HttpCookie uCookie = Request.Cookies["UserInfo"];
string from = null;
if (uCookie != null)
{
UserInfo uinfo = JsonConvert.DeserializeObject <UserInfo>(uCookie.Value);
if (uinfo != null)
{
from = uinfo.Email;
}
}
string to = ConfigurationManager.AppSettings["FeedbackEmail"];
string fromEmail = string.IsNullOrWhiteSpace(from) ? null : from;
AntiXssSanitizer.HtmlEncode(comment);
EmailMessage message = new EmailMessage()
{
To = to, Subject = "Feedback", From = fromEmail
};
message.Body = Server.UrlDecode(comment);
new EmailHelper().Send(message, null, null, false);
return(Json("Success"));
}
/// <summary> /// Set the origin html string safty /// </summary> /// <param name="originHtmlString"></param> /// <param name="policy"></param> /// <returns></returns> public static string ToSafeHtmlString(this string originHtmlString, AntiXssPolicy policy) => AntiXssSanitizer.Sanitize(originHtmlString, policy);
/// <summary> /// Set the origin html string safty /// </summary> /// <param name="originHtmlString"></param> /// <param name="policyName"></param> /// <returns></returns> public static string ToSafeHtmlString(this string originHtmlString, string policyName) => AntiXssSanitizer.Sanitize(originHtmlString, policyName);
/// <summary> /// Set the origin html string safty /// </summary> /// <param name="originHtmlString"></param> /// <returns></returns> public static string ToSafeHtmlString(this string originHtmlString) => AntiXssSanitizer.Sanitize(originHtmlString);
