vdlp/oc-htmlpurifier-plugin

Adds a standards compliant HTML filter to October CMS.

Maintainers

Details

github.com/vdlp/oc-htmlpurifier-plugin

Source

Issues

Installs: 177

Dependents: 0

Suggesters: 0

Security: 0

Stars: 2

Watchers: 8

Forks: 2

Open Issues: 0

Type:october-plugin

3.0.0 2023-11-30 09:58 UTC

Requires

GPL-2.0 79723b7c462910bf838e60a3290134dc725fc268

  • Van der Let & Partners <octobercms.woop@vdlp.nl>
  • Alwin Drenth <adrenth.woop@gmail.com>

This package is auto-updated.

Last update: 2024-11-14 15:11:53 UTC

README

An October CMS plugin which adds a standards compliant HTML filter to October CMS.

HTML Purifier is an HTML filtering solution that uses a unique combination of robust whitelists and agressive parsing to ensure that not only are XSS attacks thwarted, but the resulting HTML is standards compliant.

Installation

CLI:

php artisan plugin:install Vdlp.HtmlPurifier

October CMS:

Go to Settings > Updates & Plugins > Install plugins and search for 'HtmlPurifier'.

Configuration

To configure the filter execute this command:

php artisan vendor:publish --provider="Vdlp\HtmlPurifier\HtmlPurifierServiceProvider" --tag="config"

A configuration file named config/htmlpurifier.php is now created.

In depth information about configuration parameters can be found here: http://htmlpurifier.org/live/configdoc/plain.html

Usage

Use the `|purify' in your Twig templates to apply the HTML Purifier filter.

{{ contentFromCms|purify }}

{{ contentFromExternalSource|purify }}

or

{{ '<a href="" target="_blank">Some random HTML string</a>'|purify }}

For more information about templating in October CMS: http://octobercms.com/docs/markup/templating