[Zope-CMF] Re: Sanitised HTML
Tres Seaver
tseaver at palladion.com
Sat Apr 21 13:41:04 EDT 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Charlie Clark wrote:
> I noted that documents with the HTML content get sanitised when
> edited in the web (presumably this is to prevent possibly dangerous
> elements like javascript and forms being entered) but how is this
> controlled? I can't find anything in the source that looks
> responsible for this. Is there a CMF setting for this or which method
> do I need to overwrite?
The skin method 'validateHTML' calls 'CMFDefault.utils.scrubHTML' to do
the cleaning.
Tres.
- --
===================================================================
Tres Seaver +1 540-429-0999 tseaver at palladion.com
Palladion Software "Excellence by Design" http://palladion.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFGKkyv+gerLs4ltQ4RAlhaAJ4yZcBZnBTqwlUhuGROyIR+VB78LACg1Ylq
Me6jGSWG8ONNnwFMvORo7tE=
=ydfy
-----END PGP SIGNATURE-----
More information about the Zope-CMF
mailing list