It is currently Sat Dec 02, 2017 4:06 pm
Advanced search
Do you think the HTML spec should do something differently? You can discuss spec feedback here, but you should send it to the WHATWG mailing list or file a bug in the W3C bugzilla for it to be considered.
by PMB9 » Wed Feb 18, 2009 6:36 pm
I propose some User comment security.
E.g.
- Code: Select all
<html>
<head>
<title>User comment security example</title>
<security tag="comment" class="" html="basic" scripting="no" styling="basic" />
</head>
<comment><strong>Hi!<strong><em>What about this:</em><iframe src="fancy-website"> <img src="my-last-holidays-98000px.png"></comment>
</html>
What about a DOM interface for secure html insert? My web application does may want to include html from other webpages. I want to prohibit scripting and frames. I only want to allow some basic CSS.
-
PMB9
- <h3>
-
- Posts: 50
- Joined: Sat Jan 26, 2008 5:38 pm
by zcorpan » Thu Feb 19, 2009 11:12 am
Check out the <iframe seamless sandbox> features in the spec, they were designed for restricted comments.
-
zcorpan
- <article>
-
- Posts: 807
- Joined: Tue Feb 06, 2007 8:29 pm
- Location: Sweden
Return to Feedback on the Specs
Who is online
Users browsing this forum: No registered users and 1 guest