web.py

HTML sanitization code should allow customization

Bug #117785 reported by Aaron Swartz
4
Affects Status Importance Assigned to Milestone
web.py
New
Undecided
Unassigned

Bug Description

The HTML sanitization code from bug 117784 should be improved to allow:

1. customizable .acceptable_elements, .acceptable_attributes,
.acceptable_uri_schemes, etc.

2. per-element attribute blocking

3. distinguishing between whether just an element should be removed or its entire subtree

[This bug reported by Chris Palmer.]

Revision history for this message
Josh Goldfoot (jgfoot) wrote :

How about http://code.activestate.com/recipes/496942/ ?

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.