editor.js/modules/sanitizer.js

/**
 * Codex Sanitizer
 */

module.exports = (function (sanitizer) {

    /** HTML Janitor library */
    let janitor = require('html-janitor');

    /** Codex Editor */
    let editor  = codex.editor;

    sanitizer.prepare = function () {

        if (editor.settings.sanitizer && !editor.core.isEmpty(editor.settings.sanitizer)) {

            Config.CUSTOM = editor.settings.sanitizer;

        }

    };

    /**
     * Basic config
     */
    var Config = {

        /** User configuration */
        CUSTOM : null,

        BASIC : {

            tags: {
                p: {},
                a: {
                    href: true,
                    target: '_blank',
                    rel: 'nofollow'
                }
            }
        }
    };

    sanitizer.Config = Config;

    /**
     *
     * @param userCustomConfig
     * @returns {*}
     * @private
     *
     * @description If developer uses editor's API, then he can customize sane restrictions.
     * Or, sane config can be defined globally in editors initialization. That config will be used everywhere
     * At least, if there is no config overrides, that API uses BASIC Default configation
     */
    let init_ = function (userCustomConfig) {

        let configuration = userCustomConfig || Config.CUSTOM || Config.BASIC;

        return new janitor(configuration);

    };

    /**
     * Cleans string from unwanted tags
     * @protected
     * @param {String} dirtyString - taint string
     * @param {Object} customConfig - allowed tags
     */
    sanitizer.clean = function (dirtyString, customConfig) {

        let janitorInstance = init_(customConfig);

        return janitorInstance.clean(dirtyString);

    };

    return sanitizer;

})({});
Sanitizer and paste listener (#110) * initial commit * blockPasteCallback improved with caret restoring 2017-01-18 16:06:36 +01:00			`/**`
			`* Codex Sanitizer`
			`*/`

Refactoring (#144) * codex -> codex.editor * ESlint code style * Code lint * fix inline module 'this' call * fixed toolbox leaf * removed empty spaces * caret module code improved 2017-02-01 18:25:59 +01:00			`module.exports = (function (sanitizer) {`
Sanitizer and paste listener (#110) * initial commit * blockPasteCallback improved with caret restoring 2017-01-18 16:06:36 +01:00
sanitizer configuration (#179) 2017-03-15 22:42:47 +01:00			`/** HTML Janitor library */`
			`let janitor = require('html-janitor');`

			`/** Codex Editor */`
			`let editor = codex.editor;`

			`sanitizer.prepare = function () {`

			`if (editor.settings.sanitizer && !editor.core.isEmpty(editor.settings.sanitizer)) {`

			`Config.CUSTOM = editor.settings.sanitizer;`

			`}`

			`};`
Destroy module (#157) * listeners module added * Destroy method added * Destroy method for plugins added * Delete plugins properties from window obj * Revert "Delete plugins properties from window obj" This reverts commit 6c91f81229f65e396d0e6d0cecadd8cd31bd4953. * Twitter and instagram api's destroy * Scripts destoy added * Fix * Replace regex with String.indexOf * Settings for destroyer 2017-02-13 18:54:18 +01:00
Sanitizer and paste listener (#110) * initial commit * blockPasteCallback improved with caret restoring 2017-01-18 16:06:36 +01:00			`/**`
			`* Basic config`
			`*/`
			`var Config = {`

sanitizer configuration (#179) 2017-03-15 22:42:47 +01:00			`/** User configuration */`
			`CUSTOM : null,`

Sanitizer and paste listener (#110) * initial commit * blockPasteCallback improved with caret restoring 2017-01-18 16:06:36 +01:00			`BASIC : {`

			`tags: {`
			`p: {},`
			`a: {`
			`href: true,`
			`target: '_blank',`
			`rel: 'nofollow'`
configure sanitize 2017-04-25 02:47:30 +02:00			`}`
Sanitizer and paste listener (#110) * initial commit * blockPasteCallback improved with caret restoring 2017-01-18 16:06:36 +01:00			`}`
			`}`
			`};`

			`sanitizer.Config = Config;`

comments 2017-04-23 00:12:06 +02:00			`/**`
			`*`
			`* @param userCustomConfig`
			`* @returns {*}`
			`* @private`
			`*`
			`* @description If developer uses editor's API, then he can customize sane restrictions.`
			`* Or, sane config can be defined globally in editors initialization. That config will be used everywhere`
			`* At least, if there is no config overrides, that API uses BASIC Default configation`
			`*/`
sanitize improvements 2017-04-22 23:53:06 +02:00			`let init_ = function (userCustomConfig) {`
sanitizer configuration (#179) 2017-03-15 22:42:47 +01:00
sanitize improvements 2017-04-22 23:53:06 +02:00			`let configuration = userCustomConfig \|\| Config.CUSTOM \|\| Config.BASIC;`
sanitizer configuration (#179) 2017-03-15 22:42:47 +01:00
			`return new janitor(configuration);`

			`};`
Sanitizer and paste listener (#110) * initial commit * blockPasteCallback improved with caret restoring 2017-01-18 16:06:36 +01:00
sanitize improvements 2017-04-22 23:53:06 +02:00			`/**`
			`* Cleans string from unwanted tags`
			`* @protected`
			`* @param {String} dirtyString - taint string`
			`* @param {Object} customConfig - allowed tags`
			`*/`
Improve AJAX context saving (#184) * Improve AJAX context saving Value returned in beforeSend method now will be passed as context to the Error, Success and Progress events * resolve conflict 2017-04-23 16:11:03 +02:00			`sanitizer.clean = function (dirtyString, customConfig) {`
sanitize improvements 2017-04-22 23:53:06 +02:00
			`let janitorInstance = init_(customConfig);`

			`return janitorInstance.clean(dirtyString);`

			`};`

Sanitizer and paste listener (#110) * initial commit * blockPasteCallback improved with caret restoring 2017-01-18 16:06:36 +01:00			`return sanitizer;`

Refactoring (#144) * codex -> codex.editor * ESlint code style * Code lint * fix inline module 'this' call * fixed toolbox leaf * removed empty spaces * caret module code improved 2017-02-01 18:25:59 +01:00			`})({});`