Playing around with some C# 3.0 language features, I came up with something which is quite useful if you are doing a lot of web in/output encoding.
The following extension methods wrap the AntiXss library:
public static class Extensions
{
public static string UrlEncode(this string input)
{
return AntiXss.UrlEncode(input);
}
public static string HtmlEncode(this string input)
{
return AntiXss.HtmlEncode(input);
}
// rest omitted
}
This allows doing something like this:
string input = “<h1>leastprivilege rocks</h1>”;
Response.Write(input.HtmlEncode());
AntiXssExtensions.zip (17.19 KB)
leastprivilege.com 