htmlpurifier/library/HTMLPurifier/ConfigSchema/schema/URI.AllowedSchemes.txt

URI.AllowedSchemes
TYPE: lookup
--DEFAULT--
array (
  'http' => true,
  'https' => true,
  'mailto' => true,
  'ftp' => true,
  'nntp' => true,
  'news' => true,
  'tel' => true,
)
--DESCRIPTION--
Whitelist that defines the schemes that a URI is allowed to have.  This
prevents XSS attacks from using pseudo-schemes like javascript or mocha.
There is also support for the <code>data</code> and <code>file</code>
URI schemes, but they are not enabled by default.
--# vim: et sw=4 sts=4
Handle CRLF discrepancies Signed-off-by: Edward Z. Yang <edwardzyang@thewritingpot.com> 2008-06-24 21:10:51 -04:00			`URI.AllowedSchemes`
			`TYPE: lookup`
			`--DEFAULT--`
			`array (`
			`'http' => true,`
			`'https' => true,`
			`'mailto' => true,`
			`'ftp' => true,`
			`'nntp' => true,`
			`'news' => true,`
tel protocol support. 2016-06-17 18:39:18 -05:00			`'tel' => true,`
Handle CRLF discrepancies Signed-off-by: Edward Z. Yang <edwardzyang@thewritingpot.com> 2008-06-24 21:10:51 -04:00			`)`
			`--DESCRIPTION--`
			`Whitelist that defines the schemes that a URI is allowed to have. This`
			`prevents XSS attacks from using pseudo-schemes like javascript or mocha.`
Add support for file:// URI scheme. Signed-off-by: Edward Z. Yang <ezyang@mit.edu> 2010-09-09 00:01:26 -04:00			`There is also support for the <code>data</code> and <code>file</code>`
			`URI schemes, but they are not enabled by default.`
Add vim modelines to all files. Signed-off-by: Edward Z. Yang <edwardzyang@thewritingpot.com> 2008-12-06 04:24:59 -05:00			`--# vim: et sw=4 sts=4`