2 Replies Latest reply on Aug 14, 2012 8:15 AM by benid0r

    Block unwanted tags from drag&drop




      we successfully block any unwanted tags pasted from the clipboard, what passes the rte edit plugin and paste-wordhtml is what we want. Fine.


      But authors are still able to inject everything they want by using drag&drop from external programs. I.e. they edit a simple HTML file, add some <pre> code, display it in a webbrowser, mark and drag it to the editor.


      We tried whatever we could find in the rte configuration, but it looks like the paste settings completely forgot about drag&drop.


      So the question is: how do you avoid unwanted tags from drag&drop? Or better, how to you whitelist what you want to allow?