Posted by C. (http://symcbean.blogspot.com/) on 10/06/69 12:00

On 15 Jan, 19:38, a...@spamcop.net (axlq) wrote:
> In article <vl1qo3did9p695cr8sck2gpfejo4h03...@4ax.com>,
>
> <firewood...@yahoo.com> wrote:
> >I use tinyMCE to provide a formattable textarea for the users of my
> >website. How do I filter data so complex as that?
>
> What do you want to filter? With TinyMCE you can control the
> features that a user puts into the text. If the user tries to
> insert some HTML tags you don't allow (use any of the regexp
> functions or stristri()), simply warn the user and redisplay the
> text until the user fixes it.

!

Maybe its possible to configure the editor but thats client-side even
if it is configured not to allow certain tags to be entered, the
receiving PHP script should sanitize the input.

RTFM for strip_tags()

C.

• Next in forum: Is This A Good Structure For What I Am Trying To Achieve With The Languages?
• Prev in forum: Re: controlling what kind of data is returned by PHP
• Thread view: Re: How do you secure a WYSIWYG editor?

[Reply to this message]