wikijs-fork/server/modules/rendering/html-security/definition.yml

29 lines
834 B
YAML
Raw Permalink Normal View History

2018-09-10 00:33:10 +00:00
key: htmlSecurity
title: Security
description: Filter and strips potentially dangerous content
author: requarks.io
2019-08-05 03:53:21 +00:00
icon: mdi-fire
2018-09-10 00:33:10 +00:00
enabledDefault: true
dependsOn: htmlCore
2019-12-12 04:35:54 +00:00
step: post
order: 99999
2018-09-10 00:33:10 +00:00
props:
2019-12-12 04:35:54 +00:00
safeHTML:
2018-09-10 00:33:10 +00:00
type: Boolean
2019-12-12 04:35:54 +00:00
title: Sanitize HTML
default: true
hint: Sanitize HTML from unsafe attributes and tags that could lead to XSS attacks
order: 1
allowDrawIoUnsafe:
type: Boolean
title: Allow Draw.io Unsafe Elements
default: true
hint: Draw.io diagrams may introduce some elements that are usually filtered. Turning off this option may cause some diagrams to be completely removed during the sanitization process.
order: 2
allowIFrames:
type: Boolean
title: Allow iframes
default: false
hint: iframes will not be stripped if enabled. (Not recommended)
order: 3