mirrors/htmlpurifier
0
0
Fork 0
mirror of https://github.com/ezyang/htmlpurifier.git synced 2024-12-22 16:31:53 +00:00
Code Releases Activity
Standards compliant HTML filter written in PHP. http://htmlpurifier.org
416 Commits 7 Branches 66 Tags 9.5 MiB
PHP 94.5%
HTML 4.6%
XSLT 0.5%
CSS 0.3%
JavaScript 0.1%
7a4c7b3777
Go to file
Edward Z. Yang 7a4c7b3777 [1.2.0] [BC] ID attributes now disabled by default. New directives: 
+ %HTML.EnableAttrID - restores old behavior by allowing IDs
  + %Attr.IDPrefix - %Attr.IDBlacklist alternative that munges all user IDs so that they don't collide with your IDs
  + %Attr.IDPrefixLocal - Same as above, but for when there are multiple instances of user content on the page
  + Profuse documentation on how to use these available in id.txt

git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@526 48356398-32a2-884e-a903-53898d9a118a
2006-11-17 01:05:41 +00:00
art Add one final "Powered" logo. 2006-07-29 02:49:30 +00:00
benchmarks [1.1.1] Grey outputs that are negative. 2006-09-24 19:48:29 +00:00
configdoc [1.2.0] Allow configuration directives to permit null values. ConfigDoc updated accordingly. 2006-11-12 02:59:36 +00:00
docs [1.2.0] [BC] ID attributes now disabled by default. New directives: 2006-11-17 01:05:41 +00:00
library [1.2.0] [BC] ID attributes now disabled by default. New directives: 2006-11-17 01:05:41 +00:00
maintenance [1.2.0] 2006-09-30 20:18:08 +00:00
plugins Added MODx plugin. 2006-10-02 16:56:47 +00:00
smoketests [1.2.0] XSS attacks smoketest given facelift. 2006-11-08 01:31:38 +00:00
tests [1.2.0] [BC] ID attributes now disabled by default. New directives: 2006-11-17 01:05:41 +00:00
CREDITS Update docs, add CREDITS. 2006-08-16 17:35:24 +00:00
Doxyfile [1.1.2] Bump version number in Doxyfile 2006-09-30 19:03:51 +00:00
INSTALL [1.2.0] 2006-09-30 20:18:08 +00:00
LICENSE Rename so that there's no txt extension, adhering with good practices. 2006-08-16 03:57:02 +00:00
NEWS [1.2.0] [BC] ID attributes now disabled by default. New directives: 2006-11-17 01:05:41 +00:00
phpdoc.ini [1.1.2] Mass svn:eol-style=native. data.txt had line ending info taken away, since it is unbiased 2006-09-25 00:05:33 +00:00
README [1.1.2] Mass svn:eol-style=native. data.txt had line ending info taken away, since it is unbiased 2006-09-25 00:05:33 +00:00
SLOW [1.2.0] Assorted tinyfixes 2006-11-03 02:40:37 +00:00
test-settings.sample.php [1.1.1] 2006-09-24 21:58:14 +00:00
TODO [1.2.0] [BC] ID attributes now disabled by default. New directives: 2006-11-17 01:05:41 +00:00
WYSIWYG - XHTML generation can now be turned off, allowing things like <br> 2006-09-16 00:37:33 +00:00

README 

README
    All about HTMLPurifier

HTMLPurifier is an HTML filtering solution.  It uses a unique combination of
robust whitelists and agressive parsing to ensure that not only are XSS
attacks thwarted, but the resulting HTML is standards compliant.

See INSTALL on how to use the library.  See docs/ for more developer-oriented
documentation as well as some code examples.  Users of TinyMCE or FCKeditor
may be especially interested in WYSIWYG.

HTMLPurifier can be found on the web at: http://hp.jpsband.org/