Skip to main content
BuyLog In
.NET Reporting Tools
Search in…
Docs > API Reference > DevExpress.XtraReports.Web > ASPxWebDocumentViewer > Properties > AllowURLsWithJSContent
All docs
V24.1
Reporting
Product Information
.NET / .NET Core Support
Get Started with DevExpress Reporting
Create Different Report Types (Walkthroughs)
Detailed Guide to DevExpress Reporting
Memory Usage in Reporting - Best Practices
Localize Reporting Applications
Security Considerations
Visual Studio Report Designer
VS Code Report Designer
Reporting for Desktop
Reporting for .NET MAUI
Reporting for Web
Cloud Integration
Cross-Platform .NET App UI
Backend Web API Service / REST API for Reporting
WCF Report Service
End-User Documentation
Redistribution and Deployment
API Reference
DevExpress.XtraCharts
DevExpress.XtraPrinting.Caching
DevExpress.XtraPrinting.Diagnostics
DevExpress.XtraReports
DevExpress.XtraReports.CodeCompletion
DevExpress.XtraReports.CodeCompletion.Storages
DevExpress.XtraReports.Configuration
DevExpress.XtraReports.Data
DevExpress.XtraReports.Design
DevExpress.XtraReports.Expressions
DevExpress.XtraReports.Extensions
DevExpress.XtraReports.FavoriteProperties
DevExpress.XtraReports.Import
DevExpress.XtraReports.Interactivity
DevExpress.XtraReports.Localization
DevExpress.XtraReports.Native
DevExpress.XtraReports.Parameters
DevExpress.XtraReports.ReportGallery
DevExpress.XtraReports.ReportGeneration
DevExpress.XtraReports.Scripting
DevExpress.XtraReports.Security
DevExpress.XtraReports.Serialization
DevExpress.XtraReports.Service
DevExpress.XtraReports.Service.Extensions
DevExpress.XtraReports.Services
DevExpress.XtraReports.Templates
DevExpress.XtraReports.UI
DevExpress.XtraReports.UI.CrossTab
DevExpress.XtraReports.UI.PivotGrid
DevExpress.XtraReports.UserDesigner
DevExpress.XtraReports.Web
ASPxDocumentViewer
ASPxQueryBuilder
ASPxReportDesigner
ASPxWebDocumentViewer
Members
Constructors
Fields
Properties
AccessibilityCompliant
AllowURLsWithJSContent
ClientInstanceName
ClientSideEvents
Height
JSProperties
MenuItems
MobileMode
Nonce
ReportSourceId
RequestEvent
RightToLeft
SettingsClientSideModel
SettingsExport
SettingsMobile
SettingsProgressBar
SettingsRemoteSource
SettingsSearch
SettingsTabPanel
Width
Methods
Events
BookmarkFiller<T>
CachedReportSourceWeb
CacheReportDocumentEventArgs
CacheReportDocumentEventHandler
CanProcessHandlerRequestEventArgs
CustomizeParameterEditorsEventArgs
DeserializeClientParameterEventArgs
ImagesEmbeddingMode
ReportDesignerClientSideEvents
ReportDocumentMap
ReportDocumentMapStyles
ReportParametersPanel
ReportParametersPanelEditorCaptionSettings
ReportParametersPanelEditorStyles
ReportToolbar
ReportToolbarBoxStyle
ReportToolbarButton
ReportToolbarButtonStyle
ReportToolbarClientSideEvents
ReportToolbarComboBoxStyle
ReportToolbarEditorCaptionSettings
ReportToolbarImages
ReportToolbarItem
ReportToolbarItemCollection
ReportToolbarItemKind
ReportToolbarLabel
ReportToolbarLabelStyle
ReportToolbarMenuStyle
ReportToolbarStyles
ReportViewer
ReportViewerClientSideEvents
RestoreReportDocumentFromCacheEventArgs
RestoreReportDocumentFromCacheEventHandler
SaveQueryEventArgs
SaveReportLayoutEventArgs
SaveReportLayoutEventHandler
SiteMapBookmarkFiller
WebDocumentViewerClientSideEvents
DevExpress.XtraReports.Web.Azure
DevExpress.XtraReports.Web.Azure.ReportDesigner
DevExpress.XtraReports.Web.Azure.WebDocumentViewer
DevExpress.XtraReports.Web.ClientControls
DevExpress.XtraReports.Web.ClientControls.DataContracts
DevExpress.XtraReports.Web.DocumentViewer
DevExpress.XtraReports.Web.DocumentViewer.Ribbon
DevExpress.XtraReports.Web.Extensions
DevExpress.XtraReports.Web.Localization
DevExpress.XtraReports.Web.ParametersPanel
DevExpress.XtraReports.Web.QueryBuilder
DevExpress.XtraReports.Web.QueryBuilder.Native
DevExpress.XtraReports.Web.QueryBuilder.Services
DevExpress.XtraReports.Web.ReportDesigner
DevExpress.XtraReports.Web.ReportDesigner.DataContracts
DevExpress.XtraReports.Web.ReportDesigner.Native
DevExpress.XtraReports.Web.ReportDesigner.Services
DevExpress.XtraReports.Web.WebDocumentViewer
DevExpress.XtraReports.Web.WebDocumentViewer.DataContracts
DevExpress.XtraReports.Web.WebDocumentViewer.Native
DevExpress.XtraReports.Wizards
DevExpress.XtraReports.Wizards.Builder
DevExpress.XtraReports.Wizards.ColorSchemes
DevExpress.XtraReports.Wizards.CrossTab
DevExpress.XtraReports.Wizards.Labels
DevExpress.XtraReports.Wizards.Presenters
DevExpress.XtraReports.Wizards.Templates
DevExpress.XtraReports.Wizards.Views
ASP.NET Core API Reference
Blazor API Reference
Client API Reference
Client API Reference (Web Forms & MVC)
Download CHM

ASPxWebDocumentViewer.AllowURLsWithJSContent Property

SECURITY NOTE

Setting this property to true may introduce security-related issues because report scripts are not secure. Review the following topic to learn how to protect websites from cross-site scripting (XSS) attacks: Scripts Security.

Specifies whether or not the execution of the JavaScript code placed in URLs is allowed.

Namespace: DevExpress.XtraReports.Web

Assembly: DevExpress.XtraReports.v24.1.Web.WebForms.dll

NuGet Package: DevExpress.Web.Reporting

Declaration

[DefaultValue(false)]
public bool AllowURLsWithJSContent { get; set; }

Property Value

Type Default Description
Boolean false

true, to allow the execution of the JavaScript code placed in URLs; otherwise, false.

Remarks

By default, in the ASPxWebDocumentViewer, the execution of JavaScript code placed in URLs is prohibited, since this behavior creates the possibility of a phishing attack and makes executing queries from users viewing reports possible.

Enable the AllowURLsWithJSContent setting when you need to insert JavaScript code into the URL.

See Also