mirror of
https://github.com/element-hq/element-web
synced 2024-11-27 11:47:23 +03:00
Document brokenness
This commit is contained in:
David Baker
parent
8ae210cbe2
commit
5fff3bdf24
1 changed files with 4 additions and 0 deletions
|
|
@ -101,6 +101,10 @@ var sanitizeHtmlParams = {
|
|||
selfClosing: [ 'img', 'br', 'hr', 'area', 'base', 'basefont', 'input', 'link', 'meta' ],
|
||||
// URL schemes we permit
|
||||
allowedSchemes: [ 'http', 'https', 'ftp', 'mailto' ],
|
||||
|
||||
// DO NOT USE. sanitize-html allows all URL starting with '//'
|
||||
// so this will always allow links to whatever scheme the
|
||||
// host page is served over.
|
||||
allowedSchemesByTag: {},
|
||||
|
||||
transformTags: { // custom to matrix
|
||||
|
|
|
|||
Loading…
Reference in a new issue