I am running Rails 2.3.14 with the rails_xss plugin. I have another plugin that I use to create admin control panel views. My problem is that rails_xss avoids all the HTML that my panel plugin generates. Is there a way to configure rails_xss so as not to avoid pages matching example.com/admin
, or based on a directory ( app/views/admin
) or something similar, to achieve the same result?
source share