Add some new protocols for KSES. Make the list of protocols filterable. Start esc_url() with the same list. fixes #10914. props technosailor
git-svn-id: http://svn.automattic.com/wordpress/trunk@14412 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
parent
cdd52a2071
commit
0c1ce4e9bc
|
@ -2214,7 +2214,7 @@ function esc_url( $url, $protocols = null, $_context = 'display' ) {
|
|||
}
|
||||
|
||||
if ( !is_array($protocols) )
|
||||
$protocols = array('http', 'https', 'ftp', 'ftps', 'mailto', 'news', 'irc', 'gopher', 'nntp', 'feed', 'telnet');
|
||||
$protocols = array ('http', 'https', 'ftp', 'ftps', 'mailto', 'news', 'irc', 'gopher', 'nntp', 'feed', 'telnet', 'mms', 'rtsp', 'svn');
|
||||
if ( wp_kses_bad_protocol( $url, $protocols ) != $url )
|
||||
return '';
|
||||
|
||||
|
|
|
@ -480,9 +480,9 @@ if ( ! CUSTOM_TAGS ) {
|
|||
* call this function.
|
||||
*
|
||||
* The default allowed protocols are 'http', 'https', 'ftp', 'mailto', 'news',
|
||||
* 'irc', 'gopher', 'nntp', 'feed', and finally 'telnet. This covers all common
|
||||
* link protocols, except for 'javascript' which should not be allowed for
|
||||
* untrusted users.
|
||||
* 'irc', 'gopher', 'nntp', 'feed', 'telnet, 'mms', 'rtsp' and 'svn'. This
|
||||
* covers all common link protocols, except for 'javascript' which should not
|
||||
* be allowed for untrusted users.
|
||||
*
|
||||
* @since 1.0.0
|
||||
*
|
||||
|
@ -491,7 +491,8 @@ if ( ! CUSTOM_TAGS ) {
|
|||
* @param array $allowed_protocols Optional. Allowed protocol in links.
|
||||
* @return string Filtered content with only allowed HTML elements
|
||||
*/
|
||||
function wp_kses($string, $allowed_html, $allowed_protocols = array ('http', 'https', 'ftp', 'ftps', 'mailto', 'news', 'irc', 'gopher', 'nntp', 'feed', 'telnet')) {
|
||||
function wp_kses($string, $allowed_html, $allowed_protocols = array ()) {
|
||||
$allowed_protocols = wp_parse_args( $allowed_protocols, apply_filters('kses_allowed_protocols', array ('http', 'https', 'ftp', 'ftps', 'mailto', 'news', 'irc', 'gopher', 'nntp', 'feed', 'telnet', 'mms', 'rtsp', 'svn') ));
|
||||
$string = wp_kses_no_null($string);
|
||||
$string = wp_kses_js_entities($string);
|
||||
$string = wp_kses_normalize_entities($string);
|
||||
|
|
Loading…
Reference in New Issue