Need a way to include scripts and styles in /type/page
Bug #515770 reported by
Edward Betts
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Open Library |
Won't Fix
|
High
|
Anand Chitipothu |
Bug Description
/type/page content is sanitized before display, this removes styles and scripts. We need a way to be able to include styles and scripts on pages.
Does this need a new type, or a switch on the page to skip the sanitizer?
Changed in openlibrary: | |
importance: | Undecided → High |
assignee: | nobody → Anand Chitipothu (anandology) |
status: | New → Confirmed |
Changed in openlibrary: | |
milestone: | none → upstream |
Changed in openlibrary: | |
status: | Confirmed → Won't Fix |
To post a comment you must log in.
We can't allow this. It is security risk. People can add javascripts to steal cookies.
I can think of a work-around if can point me to a couple of examples.