Plugins You can find out about all the publicly available Grails plugins.

Xss Sanitizer Plugin

1 vote
compile "org.grails.plugins:xss-sanitizer:0.4.0"

 Documentation  Source  Issues


Grails plugin for sanitizing XSS from the user input. This plugin uses OWASP ESAPI library to sanitize request parameters. This reduces the risk of dangerous XSS request parameters possibly being rendered on the client.


runtime ":xss-sanitizer:0.4.1"


This plugin only supports Grails 2.0. For Grails 3, refer to this plugin.

This plugin will add the automatic ability to strip / clean out unwanted XSS code in the browser. The plugin strips code that comes in via the request object. Also, any Servlets will use an extend HttpServletRequest so that request parameters used from that servlet will be stripped as well.

Just adding this plugin to you project with the installation instructions above will activate it. No other actions are needed.

There is an XssSanitizerUtil class that can also be used to strip strings out.