i seem getting error content long, never specified there limit of 5000. 5000 way low anyway
error validating html input. invalid html input. error=the input large. specified input 6,989 bytes , maximum 5,000 bytes. error occurred in /applications/coldfusion11/cfusion/wwwroot/bs-4-cf/bootstrap/row.cfm: line 39 ...
called /applications/coldfusion11/cfusion/wwwroot/bs-4-cf/views/theme.cfm: line 32 called /applications/coldfusion11/cfusion/wwwroot/bs-4-cf/index.cfm: line 27 37 : variables.result &= '>'; 38 : 39 : variables.result &= getsafehtml(thistag.generatedcontent); // pass through of content 40 : 41 : variables.result &= variables.crlf & '</div><!-- /.row -->'; org.owasp.validator.html.scanexception: input large. specified input 6,989 bytes , maximum 5,000 bytes. @ org.owasp.validator.html.scan.antisamydomscanner.scan(antisamydomscanner.java:101) @ org.owasp.validator.html.antisamy.scan(antisamy.java:107) @ coldfusion.security.esapiutils.getsafehtml(esapiutils.java:670) @ coldfusion.runtime.cfpage.getsafehtml(cfpage.java:10785) @ cfrow2ecfm1904818855.runpage(/applications/coldfusion11/cfusion/wwwroot/bs-4-cf/bootstrap/row.cfm:39)
antisamy settings stored in cfusion/lib/antisamy-basic.xml, , there's 5000 char threshold set in there:
<directive name="maxinputsize" value="5000"/> changes value impact how getsafehtml() operates.
how did know this? didn't. when read question had presence of mind go look. took me 30sec find , 10sec change test demonstrate changing value works expected. can't think have invested time better here: troubleshooting issue yourself, rather posting on stack overflow.
still: have answer now.
the second part of why threshold stupidly low? subjectively, i'd it's because adobe coldfusion team aren't terribly competent, , did not occur them 5000 chars of html not these days. not know not web developers, , therefore not particularly au fait common day-to-day usage of software provide. presents repeatedly, @ expense of user base.
i have raised bug this: https://bugbase.adobe.com/index.cfm?event=bug&id=4064602. use of time might go vote it.
Comments
Post a Comment