Edit Page

XSS

Cross-site scripting (XSS) is a type of attack in which a malicious agent manages to inject client-side JavaScript into your website, so that it runs in the trusted environment of your users' browsers.

Additional Resources

XSS (OWasp)
XSS Prevention Cheatsheet

Is something missing?

If you notice something we've missed or could be improved on, please follow this link and submit a pull request to the sails-docs repo. Once we merge it, the changes will be reflected on the website the next time it is deployed.

Documentation

Concepts

Assets
- Default Tasks
- Disabling Grunt
- Task Automation
Blueprints
- Blueprint Actions
- Blueprint Routes
Configuration
- The local.js file
- Using `.sailsrc` Files
Controllers
- Generating Controllers
- Routing to Controllers
Custom Responses
- Adding a Custom Response
- Default Responses
Deployment
- FAQ
- Hosting
- Scaling
Extending Sails
- Adapters
  - Available Adapters
  - Custom Adapters
- Generators
  - Available Generators
  - Custom Generators
- Hooks
File Uploads
- Uploading to GridFS
- Uploading to S3
Globals
- Disabling Globals
Internationalization
- Locales
- Translating Dynamic Content
Logging
- Custom log messages
Middleware
- Conventional Defaults
Models and ORM
- Associations
- Attributes
- Lifecycle callbacks
- Model Settings
- Models
- Query Language
- Validations
Policies
- Sails + Passport
Programmatic Usage
- Tips and Tricks
Realtime
- Multi-server environments
- On the client
- On the server
Routes
- Custom Routes
- URL Slugs
Security
- Clickjacking
- Content Security Policy
- CORS
- CSRF
- DDOS
- P3P
- Socket Hijacking
- Strict Transport Security
- XSS
Services
- Creating a Service
Sessions
Testing
Views
- Layouts
- Locals
- Partials
- View Engines

Built with Love

The Sails framework is maintained by a web & mobile studio in Austin, TX, with the help of our contributors. We created Sails in 2012 to assist us on Node.js projects. Naturally we open-sourced it. We hope it makes your life a little bit easier!

XSS

Additional Resources

Is something missing?

Documentation

Concepts

Built with Love

Sails:

About:

Help: