view tests/reqheader.ur @ 1710:540df112ff62

Remove string-valued style attribute, which may allow injection attacks
author Adam Chlipala <adam@chlipala.net>
date Sun, 15 Apr 2012 12:40:53 -0400
parents 360cbc202756
children
line wrap: on
line source
fun main () : transaction page =
    ua <- requestHeader "User-Agent";
    case ua of
        None => return <xml>Not found</xml>
      | Some s => return <xml>User-Agent: {[s]}</xml>