-
-
Notifications
You must be signed in to change notification settings - Fork 861
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
是否有方式可以禁止 iframe 或是其它任何 html 标签 #1555
Comments
Closed
有办法吗?没看懂这个什么意思。 |
@88250 你好, vue 项目我这样初始化的 this.contentEditor = new Vditor("vditor", { ... }); ,请问 想调用 SetSanitize(true) 可以直接通过 this.contentEditor 调用吗 。 |
覆写后设置参数即可。 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
你在什么场景下需要该功能?
基于 electron 类似的框架做一个本地markdown编辑器。
想尽可能提高应用安全性,防注入,想知道是否有方式可以禁止 iframe 解析,甚至说可以不用 其它任何 html 标签。
描述最优的解决方案
有没有解析规则配置之类的,禁用某些语法。例如 <iframe src="https://www.hao123.com"></iframe> 目前可以显示网页,希望这种标签直接显示文本好了。
描述候选解决方案
其他信息
The text was updated successfully, but these errors were encountered: