Whitelisting and handling exceptions should be done at the application level not at the client level which is policy free. Ie this implementation already misses several supported constraints, and new ones come out all the time. It also silently strips invalid constraints with no reporting back.
Whitelisting and handling exceptions should be done at the application level not at the client level which is policy free. Ie this implementation already misses several supported constraints, and new ones come out all the time. It also silently strips invalid constraints with no reporting back.