views:

126

answers:

0

I need to scan inbound string properties sent to a C# coded web server. The scan should strip out any JavaScript injection threat before my web server stores client supplied data in a database server-side.

All of these inbound strings will be properties within json data structs.

It occurs to me that the ideal and most reliable place to do this is some form of shim or validation call-out invoked during parsing of string properties during json deserialization.

Has anyone done this with JSON.Net?