TaG
Reputation: 65
HTML Purifier Coding Help?
I read the http://htmlpurifier.org/docs/enduser-youtube.html doc, but I still can't figure out where to put the code to allow object, param and embed tags and Use experimental features with my htmlpurifier. Can someone please show me how to do this?
Upvotes: 1
Views: 599
Answers (2)
Julio
Reputation: 1943
The HTML.SafeObject eats a lot of memory I do not recommend you:
http://support.chamilo.org/issues/1450
Upvotes: 0
TaG
Reputation: 65
Add this.
$config->set('HTML.SafeObject', true);
$config->set('HTML.SafeEmbed', true);
To this.
require_once '../../htmlpurifier/library/HTMLPurifier.auto.php';
$config = HTMLPurifier_Config::createDefault();
$config->set('Core.Encoding', 'UTF-8'); // replace with your encoding
$config->set('HTML.Doctype', 'XHTML 1.0 Strict'); // replace with your doctype
$config->set('HTML.SafeObject', true);
$config->set('HTML.SafeEmbed', true);
$purifier = new HTMLPurifier($config);
$about_me = mysqli_real_escape_string($mysqli, $purifier->purify($_POST['about_me']));
Upvotes: 3
Related Questions
- Alternative of html purifier
- PHP - HTML Purifier - hello w<o>rld/world tutorial striptags
- HTML Purifier - what to purify?
- MySQL HTML sanitization
- Does I need to use HTML Purifier If I'm stripping tags/converting them to HTML entities?
- How do I integrate HTML Purifier to filter user-submitted data?
- mysql prepared statements & html purifier couple concept
- HTML Purifier filter inbound or outbound or both?
- HTML Purifier - allowing links?
- HTML Purifier Filter Elements