2

Strip out HTML tags from user profiles

asked 2013-06-28 07:39:14 -0500

whackhat
1 ●1 ●2

Hi - is there any way to strip out all HTML from the user profile fields? If a user updates their profile I would prefer it to strip out all HTML which is currently does not seem to be doing, I can even enter HTML tags on "real name" field, which render on the user profile page post update.

http://i.imgur.com/ldaFTQV.png (Example that renders)

edit retag flag offensive close merge delete

Comments

That's a good catch. This would be a nice feature. It can be added as a enable/disable option in conf file. So that if admin wants to disable it he can, and switch back if he changes his mind.

Chankey Pathak ( 2013-06-30 23:28:29 -0500 )edit

I think of another feature where you can "nofollow" all external links, it will save from spam and link-juice.

Chankey Pathak ( 2013-06-30 23:29:29 -0500 )edit

1 Answer

Sort by » oldest newest most voted

0

answered 2013-06-30 23:37:22 -0500

13177 ●57 ●107 ●219 http://askbot.org/

Added strip tags to the "real name" field, thanks.

On the profile html is sanitized, so no urgent changes are necessary there.

edit flag offensive delete link

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Question Tools

Stats

Asked: 2013-06-28 07:39:14 -0500

Seen: 347 times

Last updated: Jun 30 '13

Related questions

Copyright Askbot, 2010-2011. Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.

Powered by Askbot version 0.10.3