Merge pull request #993 from easonlin404/docs

Add SecureJSON doc
2017-07-08 20:51:48 +02:00 · 2017-07-08 20:51:48 +02:00 · e8187ddf14
parent e38955615a bf9758ca05
commit e8187ddf14
1 changed files with 23 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -559,6 +559,29 @@ func main() {
 }
 ```

+#### SecureJSON
+
+Using SecureJSON to prevent json hijacking. Default prepends `"while(1),"` to response body if the given struct is array values.
+
+```go
+func main() {
+	r := gin.Default()
+
+	// You can also use your own secure json prefix
+	// r.SecureJsonPrefix(")]}',\n")
+
+	r.GET("/someJSON", func(c *gin.Context) {
+		names := []string{"lena", "austin", "foo"}
+
+		// Will output  :   while(1);["lena","austin","foo"]
+		c.SecureJSON(http.StatusOK, names)
+	})
+
+	// Listen and serve on 0.0.0.0:8080
+	r.Run(":8080")
+}
+```  
+
 ### Serving static files

 ```go