Opened 17 years ago
Closed 16 years ago
#6910 closed feature request (wontfix)
kses should be applied to some kind of diff so as to not filter out post content that previously existed
Reported by: | niedzielski | Owned by: | |
---|---|---|---|
Milestone: | Priority: | low | |
Severity: | normal | Version: | 2.7.1 |
Component: | Template | Keywords: | needs-patch |
Focuses: | Cc: |
Description
As an administrator user, I have no difficulties using HTML in my entries. However, an author user on my blog recently reported a problem. He attempted to center text using the alignment button in visual editor, or even typing in the code manually. This produced code like this:
<p style="text-align: center;">foo</p>
Unfortunately, any time he saves, the system reduces the code to this:
<p style="center;">foo</p>
Which doesn't work. When I try it as an administrator user, it works fine. When I log in under his username, I have the same problem.
I am using WordPress version 2.5.1.
Change History (11)
#4
@
16 years ago
- Cc niedzielski added
- Resolution fixed deleted
- Status changed from closed to reopened
- Version set to 2.7.1
I am having this same issue with embedded flash.
Reproduction:
1: Set a user to author level.
2: Login as this user.
3: Make a new post.
4: Click insert / edit embedded media.
5: Enter http://www.youtube.com/watch?v=vda2RAEuW_g in the file / URL field.
6: Click ok.
7: A yellow box for the video appears in the post, but doesn't show on preview or update. If you leave and then edit the post, the yellow box will be stripped.
Note: The above procedure works fine when the user is raised from author to editor status.
#5
@
16 years ago
switching from kses, to html purifier (http://htmlpurifier.org/) would almost certainly fix this.
#8
@
16 years ago
- Keywords needs-patch added
- Milestone changed from 2.8 to Future Release
- Summary changed from Users with author role privelages have some HTML stripped from posts. to kses should be applied to a diff so as to not filter out post content that previously existed
- Type changed from defect (bug) to feature request
itching to close this one as invalid. the real issue is that kses should filter only newly inserted content. but that might be opening pandora's box.
#9
@
16 years ago
- Summary changed from kses should be applied to a diff so as to not filter out post content that previously existed to kses should be applied to some kind of diff so as to not filter out post content that previously existed
#11
@
16 years ago
- Milestone Future Release deleted
- Resolution set to wontfix
- Status changed from reopened to closed
per above comment - http://core.trac.wordpress.org/ticket/6910#comment:8
Just confirming this is in 2.6.
Also affects "contributer" level.