What's the best practice for security-filtering results of WebApi controllers used by U7 property editors?
I see Umbraco code uses FilterAllowedOutgoingContentAttribute, but that's internal.
On the other hand, the contents of the attribute seem simple enough -- I could just use this.
Btw for some reason this forum does not allow me to delete my topic -- it says it was deleted, but then I return and it is still here.
Equivalent of FilterAllowedOutgoingContentAttribute for user code
What's the best practice for security-filtering results of WebApi controllers used by U7 property editors?
I see Umbraco code uses
FilterAllowedOutgoingContentAttribute, but that's internal.On the other hand, the contents of the attribute seem simple enough -- I could just use this.
Btw for some reason this forum does not allow me to delete my topic -- it says it was deleted, but then I return and it is still here.
is working on a reply...