]> BookStack Code Mirror - bookstack/commit
projects / bookstack / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e9a19d5)
Comments: Added HTML filter on load, tinymce elem filtering
authorDan Brown <redacted>
Wed, 31 Jan 2024 16:20:22 +0000 (16:20 +0000)
committerDan Brown <redacted>
Wed, 31 Jan 2024 16:20:22 +0000 (16:20 +0000)
commit06901b878f2c8057a6f9b7d2e0adfda425c68dee
treee7b08ff57a46c70fe1002c220e5ad26e20886de6tree | snapshot
parente9a19d587857ba5afcaa411718af61b62aaff1accommit | diff
Comments: Added HTML filter on load, tinymce elem filtering

- Added filter on load to help prevent potentially dangerous comment
  HTML in DB at load time (if it gets passed input filtering, or is
  existing).
- Added TinyMCE valid_elements for input wysiwygs, to gracefully degrade
  content at point of user-view, rather than surprising the user by
  stripping content, which TinyMCE would show, post-save.
app/Activity/Models/Comment.php diff | blob | history
resources/js/wysiwyg/config.js diff | blob | history
resources/views/comments/comment.blade.php diff | blob | history
tests/Entity/CommentTest.php diff | blob | history
The core source code for the BookStack project.
Morty Proxy This is a proxified and sanitized view of the page, visit original site.