Bringing Purity to Bitweaver
Will • 18 May 2007 [20:41 UTC]
5.0 / 5 in 1 votes
The Bitweaver team is pleased to announce the integration of HTMLPurifier into R2 CVS. HTML Purifier not only removes all malicious code (better known as Cross Site Scripting Attacks or XSS) but also makes sure your content is standards compliant. It will tidy your HTML closing all open tags, and remove any unwanted ones. This is particularly valuable for those wishing to use HTML format as well as for those who wish to allow HTML within the TikiWiki format.
With your choice of graphical HTML editors, FCKEditor and TinyMCE, combined with HTMLPurifier you can finally do away with the wiki code learning curve and offer your users a richer user experience without compromising the security of your site. We are aware of only two other CMS systems that have integrated HTMLPurifier and Bitweaver is one of only 2 to include it with the default installation. Thanks go to Nick Palmer for doing the integration!
Articles Home
Submit Article
List Articles
Comments
Consider htmLawed
Related forum topic
great stuff
blockquotes badly formed in fck
This is actually a problem with fckeditor, but hopefully Nick will be able to hack a work around through HTMLPurifier soon.
The problem is that xhtml strict requires that only block elements be used inside blockquote tags, that is to say <blockquote>some text</blockquote> is not valid. Unfortunately fck editor does not properly format its blockquotes this way. I have found that if you try to create multiple paragraphs in blockquotes using fck you will get results like:
HTMLPurfier then properly converts this to:
but man does that look messed up! Again this seems to be a the fault of fckeditor, but hopefully a HTMLPurifier filter will be able to hack around the problem in the near future.
Re: blockquotes badly formed in fck
little html as text double parsing problem too
:)
Re: great stuff