Added sanitizer extension

This commit is contained in:
benweet 2014-05-28 09:03:40 +01:00
parent c64d32a1a3
commit 07d60ebdc2

View File

@ -16,13 +16,9 @@ define([
converter.hooks.chain("postConversion", function(html) { converter.hooks.chain("postConversion", function(html) {
buf = []; buf = [];
html.split('<div class="se-preview-section-delimiter"></div>').forEach(function(sectionHtml) { html.split('<div class="se-preview-section-delimiter"></div>').forEach(function(sectionHtml) {
try {
htmlParser(sectionHtml, htmlSanitizeWriter(buf, function(uri, isImage) { htmlParser(sectionHtml, htmlSanitizeWriter(buf, function(uri, isImage) {
return !/^unsafe/.test(sanitizeUri(uri, isImage)); return !/^unsafe/.test(sanitizeUri(uri, isImage));
})); }));
}
catch(e) {
}
buf.push('<div class="se-preview-section-delimiter"></div>'); buf.push('<div class="se-preview-section-delimiter"></div>');
}); });
return buf.slice(0, -1).join(''); return buf.slice(0, -1).join('');
@ -98,6 +94,9 @@ define([
// Special Elements (can contain anything) // Special Elements (can contain anything)
var specialElements = makeMap("script,style"); var specialElements = makeMap("script,style");
// benweet: Add iframe
blockElements.iframe = true;
var validElements = _.extend({}, var validElements = _.extend({},
voidElements, voidElements,
blockElements, blockElements,
@ -113,8 +112,9 @@ define([
'scope,scrolling,shape,size,span,start,summary,target,title,type,' + 'scope,scrolling,shape,size,span,start,summary,target,title,type,' +
'valign,value,vspace,width')); 'valign,value,vspace,width'));
// benweet: Add id // benweet: Add id and allowfullscreen (YouTube iframe)
validAttrs.id = true; validAttrs.id = true;
validAttrs.allowfullscreen = true;
/* /*
* HTML Parser By Misko Hevery (misko@hevery.com) * HTML Parser By Misko Hevery (misko@hevery.com)