Menu
I have developed an Android Application which uses Webview Component. I have used following line into my code,
webViewScores.getSettings().setJavaScriptEnabled(true);
Due to this line it is showing Lint warning as Using setJavaScriptEnabled can introduce XSS vulnerabilities into you application, review carefully. Now I know that I can suppress this warning by writing this line @SuppressLint("SetJavaScriptEnabled") above my method or at class level. But my question is, Is there any alternate solution for this ? I means is there any other way we can set Java Script Enabled in Webview ?
223
you have to use it at Class Level like
@SuppressLint("SetJavaScriptEnabled")
public class MyActivity extends Activity
{
...
}
and according to me there is no other way to enable JavaScript in WebView
and if your app really doesn’t require JavaScript usage within a WebView then don’t call setJavaScriptEnabled(true).
131
The warning tells You that enabling Javascript may be not secure. Just check if You absolutely need to enable Javascript and if You need it, suppress warning by
@SuppressLint("SetJavaScriptEnabled")
Be warned that setting setJavaScriptEnabled to true may result in refusal of your application submission on the Google Play Store, or if it's already there it may result in its removal.
https://support.google.com/faqs/answer/7668153?hl=en
4
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
