Do I need to sanitize input from ASP.NET MembershipProvider controls?

I'm using various ASP.NET controls out of the box such as the CreateUserWizard control, Login control etc... For custom controls, I have sanitized my inputs by making sure they conform to expected values. However, is this required for the controls such as the CreateUserWizard control, or is that handled internally? Do I need to provide any extra server side validation to these controls and, if so, would it be best to do it in the "CreateUserWizardControl_CreatingUser" event? Thanks

Answers


If input is coming from any form, then treat it as suspect. I've included some links here that may help you:

http://www.codersbarn.com/post/2008/11/01/ASPNET-Data-Input-Validation.aspx


If you have request validation enabled then form data with script tags will generate an error automatically.


Need Your Help

Postman addon's like in firefox

firefox firefox-addon postman

Is there a recommended add-ons in the firefox, which is has the most features that postman have?

Background alpha transition while scrolling

ios iphone objective-c animation uiscrollview

In a page I am using a scroll view to show two views. For scrolling to each view I have to change the Background alpha in different manner (Or I have to show different images).