Felipe Issa
Reputation: 556
Ck editor output un-sanitized html embed value
I'm using CK editor 5 to input some data on our application, and it accepts html in the 'HTML embed' plugin.
On this plugin configuration, we can sanitize the entered data as follows:
htmlEmbed: {
showPreviews: true,
sanitizeHtml: ( inputHtml ) => {
const outputHtml = sanitize( inputHtml );
return {
html: outputHtml,
hasChanged: true
};
}
}
and the sanitize function can be either locally defined or a 3pp, up to the application. This works well when you are previewing the html inside ckeditor, but once you request it the data from the editor, it returns the original html, not the sanitized one.
Is there any way to retrieve the editor value with the sanitized html instead of getting the original one user typed? Sanitizing the entire output is not a option, as I wanna restrict the html tags used in the html editor and they can
Upvotes: -1
Views: 23
Answers (0)
Related Questions
- Retrieve the position (X,Y) of an HTML element
- How can I set the default value for an HTML <select> element?
- Which "href" value should I use for JavaScript links, "#" or "javascript:void(0)"?
- Change an HTML input's placeholder color with CSS
- How do you parse and process HTML/XML in PHP?
- How do I create an HTML button that acts like a link?
- Why does HTML think “chucknorris” is a color?
- HTML 5: Is it <br>, <br/>, or <br />?
- HTML: Valid id attribute values?