diff options
| author | Christoph (Sheogorath) Kern | 2018-02-25 21:50:11 +0100 |
|---|---|---|
| committer | GitHub | 2018-02-25 21:50:11 +0100 |
| commit | 912cce2b40689310333d6388fd82ff354051a7ac (patch) | |
| tree | b3b475ab5405353ad4d91e8729471119c6d5650c /public/js/render.js | |
| parent | f642a1159900b332d3e88efd538cec22e3c8615a (diff) | |
| parent | 5d347d583d16d38333c84cfba4219826e45dfd0b (diff) | |
Merge pull request #740 from SISheogorath/feature/moreHTML5
Extend HTML5 support by whitelisting various tags
Diffstat (limited to 'public/js/render.js')
| -rw-r--r-- | public/js/render.js | 12 |
1 files changed, 11 insertions, 1 deletions
diff --git a/public/js/render.js b/public/js/render.js index 46489247..860f8272 100644 --- a/public/js/render.js +++ b/public/js/render.js @@ -19,8 +19,18 @@ whiteList['style'] = [] whiteList['kbd'] = [] // allow ifram tag with some safe attributes whiteList['iframe'] = ['allowfullscreen', 'name', 'referrerpolicy', 'sandbox', 'src', 'width', 'height'] -// allow summary tag +// allow details tag +whiteList['details'] = [] +// allow summary tag for details whiteList['summary'] = [] +// allow ruby tag +whiteList['ruby'] = [] +// allow rt tag for ruby +whiteList['rt'] = [] +// allow figure tag +whiteList['figure'] = [] +// allow figcaption tag +whiteList['figcaption'] = [] var filterXSSOptions = { allowCommentTag: true, |