This section explains XSS related configuration for web security.
Enabling/Disabling XSS feature
Using websecurity.xss.enabled parameter, you can enable the xss feature in the portal server. For that you have to set this parameter to true in bmwebsecurity.conf file. By default this functionality is not enabled.
Enabling/Disabling tracing for XSS
Using websecurity.xss.trace parameter, you can enable the tracing for XSS component. For that you have to set this parameter to true in bmwebsecurity.conf file. By default this functionality is not enabled. So only the information messages are logged into bmwebsecurity.log file.
