On Thu, Mar 10, 2011 at 12:14 PM, Krissy Masters <[email protected]> wrote: > I use jwysiwyg, jQuery editor for basic html inserts. Simple and very very > light. Odds are you do not need images and flash tables lists colors, > various overloaded options for comments. Also remember you need to clean > HTML data to prevent users from dropping in their own tags / scripts for > example and simply destroy your site. Echo h() is pointless if your wanting > styled html to display. > Your going to need to allow certain html tags and attributes and remove > everything else.
++ jwysiwyg. Much leaner than the others. And, for a comment form, you could disable most elements, as well. It has its bugs, though pretty much any of these editors has issues as it's an area fraught with challenges. Since you mention <br> tags, I'll pass on some info about one of the more annoying issues with jwysiwyg : you must have some text inside p tags (default is "<p>initial content</p>". See the initialContent option.) or, when users first click inside the element, the proceeding text entered won't be inside a paragraph tag. Thus, hitting ENTER results in <br> tags. You can use <p> </p> as initialContent but that leaves an ugly indent. For cleaning up the comments, HTMLPurifier is terrific. However, if it's a *really* busy site I'd be concerned about overhead. If you go with either of these, I can pass on my wysiwyg element and/or HTMLPurifier component. -- Our newest site for the community: CakePHP Video Tutorials http://tv.cakephp.org Check out the new CakePHP Questions site http://ask.cakephp.org and help others with their CakePHP related questions. To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/cake-php
