Hi there,
I have a question about "Anti XSS module for plugins" within the security configuration screen of Confluence admin console.
One customer reported that when they enable this, the amount of connection between Confluence and DB increased dramatically.
Does it correspond to XSSSecurityHeader added to xwork?
Also, anyone happens to know how this Anti XSS module works?
Regards,
Daisuke Niwa
This is what you're looking for: https://developer.atlassian.com/display/CONFDEV/Enabling+XSS+Protection+in+Plugins
XSSSecurityHeader serves a different purpose and was introduced only recently.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.