From 8ef4fb22db1fa12aa270beccc1ea7c15abbd78cb Mon Sep 17 00:00:00 2001
From: "Edward Z. Yang" <ezyang@mit.edu>
Date: Tue, 30 Mar 2010 13:33:13 -0400
Subject: [PATCH] Support for flashvars in HTML.SafeEmbed.

Signed-off-by: Edward Z. Yang <ezyang@mit.edu>
---
 NEWS                                          | 2 +-
 TODO                                          | 1 +
 library/HTMLPurifier/HTMLModule/SafeEmbed.php | 1 +
 3 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/NEWS b/NEWS
index 560825cd..4e838c63 100644
--- a/NEWS
+++ b/NEWS
@@ -14,7 +14,7 @@ NEWS ( CHANGELOG and HISTORY )                                     HTMLPurifier
 ! Support YouTube slideshows that contain /cp/ in their URL.
 ! Support for data: URI scheme; not enabled by default, add it using
   %URI.AllowedSchemes
-! Support flashvars when using %HTML.SafeObject
+! Support flashvars when using %HTML.SafeObject and %HTML.SafeEmbed.
 ! Support for Internet Explorer compatibility with %HTML.SafeObject
   using %Output.FlashCompat.
 ! Handle <ol><ol> properly, by inserting the necessary <li> tag.
diff --git a/TODO b/TODO
index 891fcf5d..937cf856 100644
--- a/TODO
+++ b/TODO
@@ -19,6 +19,7 @@ Things to do as soon as possible:
  - Build in better internal state dumps and debugging tools for remote
    debugging
  - Allowed/Allowed* have strange interactions when both set
+ - Transform lone embeds into object tags
 
 FUTURE VERSIONS
 ---------------
diff --git a/library/HTMLPurifier/HTMLModule/SafeEmbed.php b/library/HTMLPurifier/HTMLModule/SafeEmbed.php
index 8fc03cb1..ea256716 100644
--- a/library/HTMLPurifier/HTMLModule/SafeEmbed.php
+++ b/library/HTMLPurifier/HTMLModule/SafeEmbed.php
@@ -20,6 +20,7 @@ class HTMLPurifier_HTMLModule_SafeEmbed extends HTMLPurifier_HTMLModule
                 'height' => 'Pixels#' . $max,
                 'allowscriptaccess' => 'Enum#never',
                 'allownetworking' => 'Enum#internal',
+                'flashvars' => 'Text',
                 'wmode' => 'Enum#window',
                 'name' => 'ID',
             )