mirror of
https://github.com/EGroupware/egroupware.git
synced 2024-11-17 13:33:15 +01:00
8f797be836
- can be used via html class like:
$clean_html = html::purify($html);
- using it now in eTemplate to remove malicious code from html:
a) when displaying "formatted text"
b) when "formatted text" get's input by the user
13 lines
475 B
Plaintext
Executable File
13 lines
475 B
Plaintext
Executable File
Attr.IDPrefix
|
|
TYPE: string
|
|
VERSION: 1.2.0
|
|
DEFAULT: ''
|
|
--DESCRIPTION--
|
|
String to prefix to IDs. If you have no idea what IDs your pages may use,
|
|
you may opt to simply add a prefix to all user-submitted ID attributes so
|
|
that they are still usable, but will not conflict with core page IDs.
|
|
Example: setting the directive to 'user_' will result in a user submitted
|
|
'foo' to become 'user_foo' Be sure to set %HTML.EnableAttrID to true
|
|
before using this.
|
|
--# vim: et sw=4 sts=4
|