> Nice find - I did pretty much the same thing, but using lxml.Cleaner.
> This seems more configurable; I'm probably going to change mine over
> to this instead.
I needed to allow public rich text input on bucketlist.org so had to
sanitize input carefully, and used this approach:
http://birdhouse.org/blog/2010/05/12/secure-user-input-with-django/
(part of which involves tinymce, but the back-end portion is
agnostic).
./s
--
You received this message because you are subscribed to the Google Groups "Django users" group.
To post to this group, send email to django-users@googlegroups.com.
To unsubscribe from this group, send email to django-users+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/django-users?hl=en.
No comments:
Post a Comment