WebDev:FrontendCodeStandards: Difference between revisions

WebDev:FrontendCodeStandards (view source)

377 bytes removed , 20 December 2010

Confirmed users

1,136

edits

@@ Line 201: / Line 201: @@
 === Security Standards ===
-''To be branched off into separate document''
+[[WebAppSec/Secure_Coding_Guidelines]]
-''Also IT's responsibility, we should work with them together on this''
-* Protect against cross-site request forgeries with crumbs (http://developer.yahoo.com/security/)
-* Filter all input (SQL, HTML, JS, CSS)
-* Verify user has permissions on content they are editing/deleting
-* Don't include JS from 3rd party domains
-* Read http://phpsec.org/projects/guide/
-* More?
 === Video Standards ===