Home Explore Help
Register Sign In
Apq
/
logseq
mirror of https://github.com/logseq/logseq.git
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

chore: add sanitization options

Konstantinos Kaloutas 3 years ago
parent
f70d4c6bac
commit
56584121e6
1 changed files with 10 additions and 1 deletions
Split View Show Diff Stats
  1. 10 1
      src/main/frontend/security.cljs

+ 10 - 1
src/main/frontend/security.cljs
View File 

@@ -25,9 +25,18 @@
 
        f))
 
    hiccup))
 
 
+(def sanitization-options (clj->js {:ADD_TAGS ["iframe"]
 
+                                    :ALLOW_UNKNOWN_PROTOCOLS true
 
+                                    :ADD_ATTR ["allow"
 
+                                               "src"
 
+                                               "allowfullscreen"
 
+                                               "frameborder"
 
+                                               "scrolling"
 
+                                               "target"]}))
 
+
 
 (defn sanitize-html
 
   [html]
 
-  (.sanitize DOMPurify html))
 
+  (.sanitize DOMPurify html sanitization-options))
 
 
 ;; HTML:
 
 ;; Example 1: