Skip to content
Snippets Groups Projects

Add custom protocol whitelisting to SanitizationFilter

Merged Add custom protocol whitelisting to SanitizationFilter
rs-dev-issue-2613 into master
Merged Robert Speicher requested to merge rs-dev-issue-2613 into master

Addresses internal https://dev.gitlab.org/gitlab/gitlabhq/issues/2613

We allow any protocol for autolinks: irc://irc.freenode.net/git

But manual Markdown links with the same protocol get sanitized: [This will not be clickable](irc://irc.freenode.net/git): This will not be clickable

To get around this we have to first allow all protocols, and then manually clean dangerous (i.e., javascript:) protocols.

Merge request reports

Loading
Loading

Activity

Filter activity
  • Approvals
  • Assignees & reviewers
  • Comments (from bots)
  • Comments (from users)
  • Commits & branches
  • Edits
  • Labels
  • Lock status
  • Mentions
  • Merge request status
  • Tracking
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
Please register or sign in to reply