ReportViewer.AllowURLsWithJSContent Property
Specifies whether or not the execution of the JavaScript code placed in URLs is allowed.
Namespace: DevExpress.XtraReports.Web
Assembly: DevExpress.XtraReports.v18.2.Web.WebForms.dll
Declaration
[SRCategory(ReportStringId.CatBehavior)]
[DefaultValue(false)]
public bool AllowURLsWithJSContent { get; set; }
Property Value
Type | Default | Description |
---|---|---|
Boolean | **false** | true, to allow the execution of the JavaScript code placed in URLs; otherwise, false. |
Remarks
By default, the execution of the JavaScript code placed in URLs is prohibited, since this behavior creates the possibility of a phishing attack and for executing queries from users viewing reports.
If required, you can allow inserting the JavaScript code to URLs by enabling the AllowURLsWithJSContent property.
See Also