Posted by firewoodtim on 06/13/64 12:00

On Wed, 16 Jan 2008 05:36:09 -0800 (PST), "C.
(http://symcbean.blogspot.com/)" <colin.mckinnon@gmail.com> wrote:

>On 15 Jan, 19:38, a...@spamcop.net (axlq) wrote:
>> In article <vl1qo3did9p695cr8sck2gpfejo4h03...@4ax.com>,
>>
>> <firewood...@yahoo.com> wrote:
>> >I use tinyMCE to provide a formattable textarea for the users of my
>> >website. How do I filter data so complex as that?
>>
>> What do you want to filter? With TinyMCE you can control the
>> features that a user puts into the text. If the user tries to
>> insert some HTML tags you don't allow (use any of the regexp
>> functions or stristri()), simply warn the user and redisplay the
>> text until the user fixes it.
>
>!
>
>Maybe its possible to configure the editor but thats client-side even
>if it is configured not to allow certain tags to be entered, the
>receiving PHP script should sanitize the input.
>
>RTFM for strip_tags()
>
>C.

Exactly, and it is that server-side code that I want to apply. All of
this has to be done on the server. There must be solutions already in
place. Where are they?

• Next in forum: Re: Download xml file
• Prev in forum: 10 Reasons Why PHP is Better than ASP
• Thread view: Re: How do you secure a WYSIWYG editor?

[Reply to this message]