<div>
I'd like to add that sanitizing is not the same thing as validating. &nbsp;To sanitize is to remove potentially harmful input (injection, for example). &nbsp;To validate is to verify the input meets certain requirements (length, numbers only, alpha only, etc)<br />
<br />
Sanitizing should always be done on the server side. &nbsp;There's no point in sanitizing on client side because the user is likely trying to break your app -- you don't need to provide them feedback on the client side. &nbsp;<br />
<br />
Validation can be done client side in order to provide immediate feedback to the user without making them wait for server side processing. &nbsp;Validation must always be done server side, regardless of whether it was done on the client side.
</div>


I'd like to add that sanitizing is not the same thing as validating.  To sanitize is to remove potentially harmful input (injection, for example).  To validate is to verify the input meets certain requirements (length, numbers only, alpha only, etc)

Sanitizing should always be done on the server side.  There's no point in sanitizing on client side because the user is likely trying to break your app -- you don't need to provide them feedback on the client side.  

Validation can be done client side in order to provide immediate feedback to the user without making them wait for server side processing.  Validation must always be done server side, regardless of whether it was done on the client side.

<div>
Thank you! I'm planning to use HTML::Restrict to just strip away the HTML tags on the server side, but wanted to give users some immediate feedback of sorts.
</div>


Thank you! I'm planning to use HTML::Restrict to just strip away the HTML tags on the server side, but wanted to give users some immediate feedback of sorts.

<div>
<div class="content wysiwyg-content">
I need to add some input sanitization to an HTML text field. Here is the field:<br />
<br />
&lt;input size=&quot;16&quot; name=&quot;username&quot; value=&gt;<br />
<br />
How would I do this? &nbsp;Is it possible with Javascript? The backend script is written in Perl so I am thinking to use the HTML::Restrict module to strip away or restrict the HTML tags allowed upon submit.
</div>
</div>


I need to add some input sanitization to an HTML text field. Here is the field:

<input size="16" name="username" value=>

How would I do this?  Is it possible with Javascript? The backend script is written in Perl so I am thinking to use the HTML::Restrict module to strip away or restrict the HTML tags allowed upon submit.

Input sanitization for text field

JavaScript is a dynamic, object-based language commonly used for client-side scripting in web browsers. Recently, server side JavaScript frameworks have also emerged. JavaScript runs on nearly every operating system and  in almost every mainstream web browser.

JavaScript

HTML (HyperText Markup Language) is the main markup language for creating web pages and other information to be displayed in a web browser, providing both the structure and content for what is sent from a web server through the use of tags. The current implementation of the HTML specification is HTML5.