htmlpurifier

mirror of https://github.com/ezyang/htmlpurifier.git synced 2024-09-19 10:45:18 +00:00

Standards compliant HTML filter written in PHP. http://htmlpurifier.org

Go to file

Edward Z. Yang 9f996b125a [2.0.1] - Printer adheres to configuration's directives on output format - Fix improperly named form field in ConfigForm printer . HTMLPurifier_Config::getAllowedDirectivesForForm implemented, allows much easier selective embedding of configuration values . Doctype objects now accept public and system DTD identifiers . %HTML.Doctype is now constrained by specific values, to specify a custom doctype use new %HTML.CustomDoctype . ConfigForm truncates long directives to keep the form small, and does not re-output namespaces git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@1232 48356398-32a2-884e-a903-53898d9a118a		2007-06-25 18:38:39 +00:00
art	Add 1000 passes image.	2007-01-21 16:45:01 +00:00
benchmarks	Fix broken benchmark code.	2007-02-13 20:51:47 +00:00
configdoc	[2.0.1]	2007-06-24 22:22:00 +00:00
docs	Remove SVN checkout warnings from these two docs: they are no longer applicable.	2007-06-21 02:14:47 +00:00
library	[2.0.1]	2007-06-25 18:38:39 +00:00
maintenance	[1.7.0] Add native support for required elements	2007-06-20 21:39:28 +00:00
plugins	Added MODx plugin.	2006-10-02 16:56:47 +00:00
smoketests	[2.0.1]	2007-06-25 18:38:39 +00:00
tests	[2.0.1]	2007-06-25 18:38:39 +00:00
CREDITS	[1.2.0] Update documentation paths.	2006-11-19 04:37:26 +00:00
Doxyfile	Release 2.0.0.	2007-06-20 23:40:10 +00:00
INSTALL	Update INSTALL document.	2007-06-20 22:36:10 +00:00
INSTALL.fr.utf8	[1.7.0] HTML Purifier now works with PHP 4.3.2. Yay!	2007-05-27 14:27:54 +00:00
LICENSE	Rename so that there's no txt extension, adhering with good practices.	2006-08-16 03:57:02 +00:00
NEWS	[2.0.1]	2007-06-25 18:38:39 +00:00
package.php	Fix bug in packager: force all files to be "php"	2007-04-29 04:06:40 +00:00
phpdoc.ini	[1.1.2] Mass svn:eol-style=native. data.txt had line ending info taken away, since it is unbiased	2006-09-25 00:05:33 +00:00
README	Miscellaneous URL updates.	2007-04-22 22:26:20 +00:00
release1-update.php	[1.7.0] Add missing functions for DefinitionCache: replace, flush and type-checking	2007-05-27 13:25:54 +00:00
release2-strict.php	Standardize release script names, add cli execution guards.	2007-05-06 21:49:32 +00:00
release3-tag.php	Standardize release script names, add cli execution guards.	2007-05-06 21:49:32 +00:00
svn.php	Add some more release scripts.	2007-05-05 22:40:51 +00:00
test-settings.sample.php	[1.1.1]	2006-09-24 21:58:14 +00:00
TODO	[2.0.1] Add severity to error collector	2007-06-24 23:20:35 +00:00
VERSION	Release 2.0.0.	2007-06-20 23:40:10 +00:00
WHATSNEW	[1.7.0] ChildDef_Custom's regex generation has been improved, removing several false positives	2007-06-20 15:54:50 +00:00
WYSIWYG	Update WYSIWYG by removing Mantis link: bugtracker is no longer active.	2007-05-20 19:56:16 +00:00

README

README
    All about HTML Purifier

HTML Purifier is an HTML filtering solution that uses a unique combination 
of robust whitelists and agressive parsing to ensure that not only are 
XSS attacks thwarted, but the resulting HTML is standards compliant. 

HTML Purifier is oriented towards richly formatted documents from 
untrusted sources that require CSS and a full tag-set.  This library can 
be configured to accept a more restrictive set of tags, but it won't be 
as efficient as more bare-bones parsers. It will, however, do the job 
right, which may be more important. 

Places to go:

* See INSTALL for a quick installation guide
* See docs/ for developer-oriented documentation, code examples and
  an in-depth installation guide.
* See WYSIWYG for information on editors like TinyMCE and FCKeditor

HTML Purifier can be found on the web at: http://htmlpurifier.org/