xsl and namespaces
-
neadamthal
xsl and namespaces
is there any way to police what namespaces are being used in an xsl transform?
ex.,... you have a jsp which uses xml and xsl to do some of its rendering... and you are letting 3rdparties write their own xml and xsl...
i want to only allow the xsl to access a single java.class... and not let anyone reference their own classes thereby excluding any possibility of external/unforeseen code from being executed...
any ideas?
ex.,... you have a jsp which uses xml and xsl to do some of its rendering... and you are letting 3rdparties write their own xml and xsl...
i want to only allow the xsl to access a single java.class... and not let anyone reference their own classes thereby excluding any possibility of external/unforeseen code from being executed...
any ideas?