NAME

CGI::Untaint::html - validate sanitized HTML

SYNOPSIS

use CGI::Untaint;
my $handler = CGI::Untaint->new($q->Vars);

my $time = $handler->extract(-as_html => 'description');

DESCRIPTION

Web forms which take HTML from the user for later display on site open themselves up to the potential of cross-site scripting attacks, messy sites due to unclosed tags, or merely big images of Barney the Purple Dinosaur.

HTML::Sanitizer helps eliminate this by tidying up the HTML, and this module is a wrapper around HTML::Sanitizer for CGI::Untaint. When you extract as_html, you can be sure that the HTML isn't going to play havoc with your site.

It does this by using a fairly standard set of configuration parameters to HTML::Sanitizer - the "stricter" set of rules given in the examples documentation to that module.

If you want to create your own ruleset, replace $CGI::Untaint::html::sanitizer with a HTML::Sanitizer object that meets your needs.

AUTHOR

Simon Cozens, simon@cpan.org

This module may be distributed under the same terms as Perl itself.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)

NAME

SYNOPSIS

DESCRIPTION

AUTHOR

SEE ALSO

Module Install Instructions