#1931: [FF] ProtectedSource config doesn't work properly inside attributes
------------------------+---------------------------------------------------
Reporter: fournaise | Owner:
Type: Bug | Status: closed
Priority: Normal | Milestone: FCKeditor 2.6.3
Component: General | Version: FCKeditor 2.6 Beta
Resolution: invalid | Keywords: Confirmed
------------------------+---------------------------------------------------
Changes (by martinkou):
* status: reopened => closed
* resolution: => invalid
Comment:
Sorry we won't be really "fixing" this in our next release as a fix for it
would mean we're allowing invalid HTML to be written in FCKeditor. The
code snippet you gave in your example is seriously broken if it is parsed
without a Smarty parser:
{{{
Go to this address <a href="{if ($a>0 &&
$b=="test"}go.html{else}error.html{/if})">my address</a>
}}}
Even ignoring the > and & signs in the attribute values, the placements of
the double quotes themselves are already turning the <a href="..."> tag
into something totally incomprehensible to any HTML or XML parser.
However, you can fix the problem for yourself by adding a ProtectedSource
entry in fckconfig.js:
{{{
FCKConfig.ProtectedSource.Add( /{.*?}/g ) ;
}}}
--
Ticket URL: <http://dev.fckeditor.net/ticket/1931#comment:14>
FCKeditor <http://www.fckeditor.net>
The text editor for Internet
-------------------------------------------------------------------------
Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW!
Studies have shown that voting for your favorite open source project,
along with a healthy diet, reduces your potential for chronic lameness
and boredom. Vote Now at http://www.sourceforge.net/community/cca08
_______________________________________________
FCKeditor-Trac mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/fckeditor-trac
