What I noticed is the Json Process can also filter out malicious characters like <script></script>
XSSHTMLProcessor = ACFFactory.getActiveContentProcessor("text/html");
XSSJSONProcessor = ACFFactory.getActiveContentProcessor("application/json");
so what is the key different between these two processors ?
Pinned topic what is the different between ACF html and json process
Answered question This question has been answered.
Unanswered question This question has not been answered yet.
Updated on 2011-12-06T22:14:42Z at 2011-12-06T22:14:42Z by SystemAdmin
SystemAdmin 110000D4XK9224 Posts
Re: what is the different between ACF html and json process2011-12-06T22:14:42ZThis is the accepted answer. This is the accepted answer.The difference is the content type you are asking ACF to process. The docs suggest the examples of http query parameters for the "text/html" variation (such as handling submitted form data on a web page), and inbound JSON objects for "application/json" (such as handling in a RESTful resource in app/resources).
See http://www.projectzero.org/sMash/1.1.x/docs/zero.devguide.doc/zero.acf/ActiveContentFiltering.html for (a few) more details.