Skip navigation

CQ5

benid0r
benid0r Calculating status...
Currently Being Moderated

Block unwanted tags from drag&drop

Jul 27, 2012 3:44 AM

Tags: #configuration #widgets #cq5.5

Hi

 

we successfully block any unwanted tags pasted from the clipboard, what passes the rte edit plugin and paste-wordhtml is what we want. Fine.

 

But authors are still able to inject everything they want by using drag&drop from external programs. I.e. they edit a simple HTML file, add some <pre> code, display it in a webbrowser, mark and drag it to the editor.

 

We tried whatever we could find in the rte configuration, but it looks like the paste settings completely forgot about drag&drop.

 

So the question is: how do you avoid unwanted tags from drag&drop? Or better, how to you whitelist what you want to allow?

492 Views   2 Replies   Latest reply: benid0r, Aug 14, 2012 8:15 AM
 
Replies
  • Sham HC
    Currently Being Moderated
    1. Sham HC,
    Jul 29, 2012 6:39 PM   in reply to benid0r
    Report

    D&D from other browser window is not supported.  See if something can be implemented at project level on similar lines as [1].

     

    http://blog.navigationarts.com/modifying-an-extjs-authoring-interface- in-cq5/

     
    |
    Mark as:
  • benid0r
    Currently Being Moderated
    2. benid0r,
    Aug 14, 2012 8:15 AM   in reply to Sham HC
    Report

    Back from vacation, sorry for the delay.

     

    No, you got me wrong, we don't need D&D supported. Instead D&D is supported too much for our needs, as you can drop <pre> or <table> tags into RTE, even if these tags are filtered when pasting from the clipboard. You even can resize a dropped table with the mouse, so D&D seems to be supported very well.

     

    Some sanitizing seems to be done anyway, because <marquee> tags  are removed, it looks like there is some sort of blacklist. How is this controlled?

     
    |
    Mark as:
Actions

More Like This

  • Retrieving data ...

Bookmarked By (0)

Answers + Points = Status

  • 10 points awarded for Correct Answers
  • 5 points awarded for Helpful Answers
  • 10,000+ points
  • 1,001-10,000 points
  • 501-1,000 points
  • 5-500 points