mirrors/retrospring
1
0
Fork 0
mirror of https://github.com/Retrospring/retrospring.git synced 2025-01-19 01:06:05 +01:00
Code Issues Projects Releases Packages Wiki Activity

added sanitize initializer

Browse source
This commit is contained in:
nilsding 2014-12-28 19:06:04 +01:00
parent 5b590d3455
commit 443ca0e663
1 changed files with 9 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
config/initializers/sanitize.rb Normal file
View file

@ -0,0 +1,9 @@
EVIL_TAGS = {
elements: %w(quote a p i strong em del pre code table tr td th br ul ol li hr),
attributes: {
'a' => %w(href)
},
protocols: {
'a' => { 'href' => ['http', 'https', :relative] }
}
}