XSS Protection in tickets from API



已于 2022年8月31日 发布

Hi folks!

 

I'm sorry if there's already some documentation on this, but I couldn't find with some typical search keywords.

 

I'm trying to create tickets in the helpdesk using the Zendesk API (using `html_body`). However, since it's possible for anyone to send any kind of arbitrary text data in that, does Zendesk actually do some kind of filtering?

 

Please let me know if any clarifications are needed.


0

1

1 条评论

Hi Hrishikesh,
 
You typically only see that property accessible for anonymous users. For all authenticated users making requests, that property shouldn't be accessible which would provide security for your users. 
 
Hope this helps!
 
Erica

1


登录以发表评论。

找不到所需的内容?

新建帖子