[Building Sakai] big problem with HTML filtering in 2.7

[Benneker, Frank]

I agree.

It should be the site owner or the local administration who decides how the filtering of HTML should be handled.
I know there are security concerns on the option of end users writing html codeparts in a page.

But we have quite some users that are capable of writing proper html pages and code snippets that will make their course sites look so much more better & interesting then with out of the box styles and options.

If we trust our users we should give them some control over the options to built nice and interesting course sites.

Frank

-------------------------
Frank Benneker
University of Amsterdam
________________________________________
Van: sakai-dev-bounces at collab.sakaiproject.org [sakai-dev-bounces at collab.sakaiproject.org] namens Adam Marshall [adam.marshall at oucs.ox.ac.uk]
Verzonden: donderdag 22 juli 2010 14:37
Aan: sakai-dev sakai-dev
Onderwerp: [Building Sakai] big problem with HTML filtering in 2.7

http://jira.sakaiproject.org/browse/SAK-18571

In 2.7 we find that EVERY <a href> tag in the HTML site description has target="_blank" inserted which amopngst other things makes adding an index to the home page impossible.

I think the decision as to whether a hyperlink opens in a new window should be left to the page author and should not be automatically imposed without any possible way of overriding the setting.

I think there's a strong case for not adding target="_blank" during the filtering process. I cant think of any security problems that the addition of this attribute solves.

What's the community's feeling on this issue?

adam
_______________________________________________
sakai-dev mailing list
sakai-dev at collab.sakaiproject.org
http://collab.sakaiproject.org/mailman/listinfo/sakai-dev

TO UNSUBSCRIBE: send email to sakai-dev-unsubscribe at collab.sakaiproject.org with a subject of "unsubscribe"