Allowing users to only enter specific tags
Question
I'm making an app where I need users to input description using a wysiwyg editor. I cannot trust user input, so I need to only allow a , em , ul , li tags. How do I strip the others easily?
2 answers
solution1
4 ACCPTED 2011-09-12 15:17:26
solution2
4 2011-09-12 16:26:58
Rails has some sanitizing methods baked in. http://api.rubyonrails.org/classes/ActionView/Helpers/SanitizeHelper.html
These are view helpers, so if you want to sanitize before saving the user input you'll need to include the helpers somewhere useful.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
users enter results only once
Allowing users to create specific routes in rails app
CanCanCan: Allowing to manage only users profile
Allowing only one update for specific param?
Allow users to enter letters and numbers only in Rails
Allowing users to edit some information only on ruby on rails but not admins
Allowing users to select tags on sign up form using acts-as-taggable-on
Rails 4: html_safe for only specific tags
only allow specific users to access model
Rails allowing admin to add tags
Related Tags