Hi ppl, this is truely a great tool!
I however want to limit the HTML that my users are able to write (seems to me like a major exploit hole?).
Like they are only allowed fonts, img, bullit but not iframe, object and so on.
Is this possible with the current code, i no trace so far in the docs or here on the forum..?
I'd appriciate some hints to what i should do if it isnt already implemented.
Thx
I however want to limit the HTML that my users are able to write (seems to me like a major exploit hole?).
Like they are only allowed fonts, img, bullit but not iframe, object and so on.
Is this possible with the current code, i no trace so far in the docs or here on the forum..?
I'd appriciate some hints to what i should do if it isnt already implemented.
Thx
RE: Disallow certain HTML tags?
<a href="#">hahahaha</a>
into the editor, try either to view source or get a preview - it shows up correctly (that is HTML tag is shown)
But if i save it to my database and reloads it, i only saved the pure HTML, so it will show up as an actual link..
RE: Disallow certain HTML tags?
How do i call this function? I thought about making a small javascript that would call GetHTML on formsubmit.
Btw The packager doesnt work, crashes.
RE: Disallow certain HTML tags?
GetHTML() is a method of the editor. Once you have the Editor object instatiated you can call the method.
Roger Wyatt