diogo/symfony
Archived
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

[HttpFoundation] added a note about JSON responses as arrays (refs #6970)

Browse Source
This commit is contained in:
Fabien Potencier 2013-04-25 14:33:17 +02:00
parent 6a18bfc130
commit abb32a188e
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
src/Symfony/Component/HttpFoundation/JsonResponse.php
View File

@ -14,6 +14,12 @@ namespace Symfony\Component\HttpFoundation;
/** /**
* Response represents an HTTP response in JSON format. * Response represents an HTTP response in JSON format.
* *
* Note that this class does not force the returned JSON content to be an
* object. It is however recommended that you do return an object as it
* protects yourself against XSSI and JSON-JavaScript Hijacking.
*
* @see https://www.owasp.org/index.php/OWASP_AJAX_Security_Guidelines#Always_return_JSON_with_an_Object_on_the_outside
*
* @author Igor Wiedler <igor@wiedler.ch> * @author Igor Wiedler <igor@wiedler.ch>
*/ */
class JsonResponse extends Response class JsonResponse extends Response