elementareteilchen/html-purify

Adds html purify functionality as viewhelper and service class

Maintainers

Details

github.com/ElementareTeilchen/html_purify

Source

Issues

Installs: 152

Dependents: 0

Suggesters: 0

Security: 0

Stars: 3

Watchers: 4

Forks: 1

Open Issues: 0

Type:typo3-cms-extension

v2.0.0 2024-07-04 09:52 UTC

Requires

GPL-2.0+ 3c61cf5c8910518cdccd26b0e1d8208d5eb56514

extensiontypo3

This package is auto-updated.

Last update: 2024-12-04 10:46:05 UTC

README

Purify HTML to prevent XSS attacks or unwanted HTML.

Features

This extension provides you with opportunities to purify specific HTML which may is not fully under your control in order to remove possible Cross-Site-Scripting (XSS) attacks.

Installation

Simply install the extension with Composer.

composer require elementareteilchen/html-purify

This extension uses ezyang/htmlpurifier, which is set as composer requirement to be loaded automatically.

Usage

Viewhelper

<hp:purify allowedHtmlTags="strong,em">{someVariableWithPotentialXSS -> f:format.raw()}</hp:purify>

{someVariableWithPotentialXSS -> f:format.raw() -> hp:purify()}

{hp:purify(allowedHtmlTags: 'p,strong', htmlContent: '<p>Text with <strong>HTML</strong> but <em>EM will be removed</em></p>')}

Service in PHP code

$purifiedHtml = \ElementareTeilchen\HtmlPurify\Service\PurifyService::purify($htmlContent, $allowedHtmlTags);