Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

HTML Sanitizer: More default settings for different use-cases #428

Open
HeyJoel opened this issue Apr 16, 2021 · 0 comments
Open

HTML Sanitizer: More default settings for different use-cases #428

HeyJoel opened this issue Apr 16, 2021 · 0 comments
Labels
enhancement
Milestone
Backlog

Comments

@HeyJoel
Copy link
Member

HeyJoel commented Apr 16, 2021

In the default template project, the HTML editor allows you to add an embedded video, however the HTML sanitizer strips the iframe from the output.

HTML Sanitization always needs to be considered and should be a part of the template, but perhaps we can make it a bit easier here by providing several more discoverable defaults e.g. "Strict", "Lax", "Balanced" to allow users to opt-in to less secure sanitization where they trust the source or accept the risk.

Also mentioned is using bb code, or some other run-time parsable code for things like embeds.

Originally posted by @HeyJoel in #422 (comment)
@HeyJoel HeyJoel added this to the Backlog milestone Apr 16, 2021
@HeyJoel HeyJoel changed the title HTHML Sanitizer: More default settings for different use-cases HTML Sanitizer: More default settings for different use-cases Jun 26, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
Backlog
Development

No branches or pull requests
1 participant
@HeyJoel