RedCloth, restricting input?

F

Fredrik Jagenheim

Hi,

I'm writing a message board, where I'd like to use RedCloth for the text input.

However, I don't trust my users not to abuse headers, attributes and
general HTML.

Getting rid of headers and attributes should be easy, just substitute
the tags before parsing it through RedCloth. But doing this with HTML
seems a bit heavy handed. The best would be if I could get RedCloth to
escape HTML the way it does for <pre> tags.

Any ideas if that's possible, or have a much better idea? :)

//F
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

RedCloth - unbeautifying quotes 1
how to beat minimal wiki features out of redcloth? 5
[ANN] RedCloth 3.0.1 -- Humane Text for Ruby 5
Syntax highligth with textile: Syntax+RedCloth ? 2
[ANN] kramdown 0.11.0 released 0
[ANN] kramdown 0.8.0 released 0
Ruby Weekly News 7th - 13th February 2005 5
Ruby Weekly News 14th - 20th November 2005 0

Members online

Total: 104 (members: 1, guests: 103)
Robots: 462

Forum statistics

Threads
473,995
Messages
2,570,230
Members
46,818
Latest member
Brigette36

Latest Threads

Top