Report message:*
 

Re: HTMLPurifier Admin Options - your opinions

Subject: Re: HTMLPurifier Admin Options - your opinions
by Will on 2010/1/31 8:07:03

Well, this is a busy topic.

idk if its just me - but purifier strips the javascript out of all of my a tags.

ex:
<a href="(script removed) void(0);">Ajax Anchor</a>


This is no bueno, and I kinda think I know what you are gonna say...

Quote:

Well.... try # instead.



and my response... # is not vaild.

Any time I build a site with impresscms that is rich in js - I end up having to disable purifier. Which sucks, and even then the javascript part is still getting ripped out.

Security is grand and all - I am down with that - but it would be nice if we could override security if we needed to in admin side.

Content manager/blocks/etc.... if you are on acp side - you should not be limited because of the potential security risks on the user side.