[Building Sakai] Antisamy in high security breaks the old youtube embed code
Kusnetz, Jeremy
JKusnetz at APUS.EDU
Fri Jul 19 12:57:27 PDT 2013
Now that Antisamy is turned on in 2.9.x we are finding that it's default high security setting is breaking youtube's old embed code:
For example from youtubes current home page video.
Click on Share and then "Use old embed code"
And you get:
<object width="560" height="315"><param name="movie" value="//www.youtube.com/v/JNSK0647wJI?version=3&hl=en_US"></param><param name="allowFullScreen" value="true"></param><param name="allowscriptaccess" value="always"></param><embed src="//www.youtube.com/v/JNSK0647wJI?version=3&hl=en_US" type="application/x-shockwave-flash" width="560" height="315" allowscriptaccess="always" allowfullscreen="true"></embed></object>
If I set:
content.cleaner.default.low.security=true
it seems to be fine.
Shall I open a JIRA?
This message is private and confidential. If you have received it in error, please notify the sender and remove it from your system.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://collab.sakaiproject.org/pipermail/sakai-dev/attachments/20130719/33f966ef/attachment.html
More information about the sakai-dev
mailing list