diff options
| author | David Heinemeier Hansson <david@loudthinking.com> | 2007-12-04 20:04:48 +0000 |
|---|---|---|
| committer | David Heinemeier Hansson <david@loudthinking.com> | 2007-12-04 20:04:48 +0000 |
| commit | 0aec2423edbfa0a1fa99ae868273b3e9b29581d2 (patch) | |
| tree | 92f9fe1985ce6dd2159bd2c256827d796ce417fe /actionpack/lib/action_controller/vendor/html-scanner | |
| parent | cfa31c30b84d9ecd6423ab7341df6eb646bcc508 (diff) | |
| download | rails-0aec2423edbfa0a1fa99ae868273b3e9b29581d2.tar.gz rails-0aec2423edbfa0a1fa99ae868273b3e9b29581d2.tar.bz2 rails-0aec2423edbfa0a1fa99ae868273b3e9b29581d2.zip | |
Removed some of the tags that does not make sense to allow per default in the whitelist
git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@8269 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
Diffstat (limited to 'actionpack/lib/action_controller/vendor/html-scanner')
| -rw-r--r-- | actionpack/lib/action_controller/vendor/html-scanner/html/sanitizer.rb | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/actionpack/lib/action_controller/vendor/html-scanner/html/sanitizer.rb b/actionpack/lib/action_controller/vendor/html-scanner/html/sanitizer.rb index 377e81aead..1eb426aea1 100644 --- a/actionpack/lib/action_controller/vendor/html-scanner/html/sanitizer.rb +++ b/actionpack/lib/action_controller/vendor/html-scanner/html/sanitizer.rb @@ -72,9 +72,9 @@ module HTML self.bad_tags = Set.new(%w(script)) # Specifies the default Set of tags that the #sanitize helper will allow unscathed. - self.allowed_tags = Set.new(%w(strong em b i p code pre tt output samp kbd var sub + self.allowed_tags = Set.new(%w(strong em b i p code pre tt samp kbd var sub sup dfn cite big small address hr br div span h1 h2 h3 h4 h5 h6 ul ol li dt dd abbr - acronym a img blockquote del ins fieldset legend)) + acronym a img blockquote del ins)) # Specifies the default Set of html attributes that the #sanitize helper will leave # in the allowed tag. |