Skip to content

Commit

Permalink
编辑器xss过滤
Browse files Browse the repository at this point in the history
  • Loading branch information
@zoujingli
zoujingli committed Sep 15, 2021
1 parent 0d986db commit 94b9b68
Showing 1 changed file with 3 additions and 1 deletion.
4 changes: 3 additions & 1 deletion public/static/plugs/ckeditor/config.js
View file
Expand Up @@ -8,11 +8,13 @@ CKEDITOR.editorConfig = function (config) {
{name: 'uimage', items: ['Link', 'Unlink', 'Table', 'UploadImage', 'UploadMusic', 'UploadVideo', 'UploadHtml']},
{name: 'tools', items: ['Maximize']}
];
config.allowedContent = true;
config.format_tags = 'p;h1;h2;h3;pre';
config.extraPlugins = 'uimage,umusic,uhtml,uvideo';
config.removeButtons = 'Underline,Subscript,Superscript';
config.removeDialogTabs = 'image:advanced;link:advanced';
// 内容过滤
config.allowedContent = {$1: {elements: CKEDITOR.dtd, attributes: true, styles: true, classes: true}};
config.disallowedContent = 'script; *[on*]';
config.font_names = '微软雅黑/Microsoft YaHei;宋体/SimSun;新宋体/NSimSun;仿宋/FangSong;楷体/KaiTi;黑体/SimHei;' + config.font_names;
};

Expand Down

0 comments on commit 94b9b68

Please sign in to comment.