htmlpurifier/library/HTMLPurifier/ConfigSchema/URI.AllowedSchemes.txt

URI.AllowedSchemes
TYPE: lookup
--DEFAULT--
array (
  'http' => true,
  'https' => true,
  'mailto' => true,
  'ftp' => true,
  'nntp' => true,
  'news' => true,
)
--DESCRIPTION--
Whitelist that defines the schemes that a URI is allowed to have.  This
prevents XSS attacks from using pseudo-schemes like javascript or mocha.
Exported configuration values! git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@1537 48356398-32a2-884e-a903-53898d9a118a 2008-02-10 02:44:44 +00:00			`URI.AllowedSchemes`
			`TYPE: lookup`
			`--DEFAULT--`
			`array (`
			`'http' => true,`
			`'https' => true,`
			`'mailto' => true,`
			`'ftp' => true,`
			`'nntp' => true,`
			`'news' => true,`
			`)`
			`--DESCRIPTION--`
			`Whitelist that defines the schemes that a URI is allowed to have. This`
			`prevents XSS attacks from using pseudo-schemes like javascript or mocha.`