diff options
| author | Kim "BKC" Carlbäcker <kim.carlbacker@gmail.com> | 2016-01-14 03:00:05 +0100 |
|---|---|---|
| committer | Kim "BKC" Carlbäcker <kim.carlbacker@gmail.com> | 2016-01-14 03:00:05 +0100 |
| commit | a1a4f1103caa42f090314c77c695f4e34781da64 (patch) | |
| tree | 4cca6856eaff0cdee7b706672d6f4e8f208d2750 /modules/base | |
| parent | 8e09e03127d2128453a7cd1337e8f51d33147e1d (diff) | |
| download | gitea-a1a4f1103caa42f090314c77c695f4e34781da64.tar.gz gitea-a1a4f1103caa42f090314c77c695f4e34781da64.zip | |
Made Sanitizer-setup cleaner
Diffstat (limited to 'modules/base')
| -rw-r--r-- | modules/base/tool.go | 11 |
1 files changed, 10 insertions, 1 deletions
diff --git a/modules/base/tool.go b/modules/base/tool.go index c6522d1246..f98ae28b93 100644 --- a/modules/base/tool.go +++ b/modules/base/tool.go @@ -31,7 +31,16 @@ import ( "github.com/gogits/gogs/modules/setting" ) -var Sanitizer = bluemonday.UGCPolicy().AllowAttrs("class").Matching(regexp.MustCompile(`[\p{L}\p{N}\s\-_',:\[\]!\./\\\(\)&]*`)).OnElements("code").AllowElements("input").AllowAttrs("type", "checked", "disabled").OnElements("input") +func BuildSanitizer() (p *bluemonday.Policy) { + p = bluemonday.UGCPolicy() + p.AllowAttrs("class").Matching(regexp.MustCompile(`[\p{L}\p{N}\s\-_',:\[\]!\./\\\(\)&]*`)).OnElements("code") + + p.AllowAttrs("type").Matching(regexp.MustCompile(`^checkbox$`)).OnElements("input") + p.AllowAttrs("checked", "disabled").OnElements("input") + return p +} + +var Sanitizer = BuildSanitizer() // EncodeMD5 encodes string to md5 hex value. func EncodeMD5(str string) string { |