#3407: scripts aren't protected while loading content
-------------------------------+--------------------------------------------
Reporter: alfonsoml | Owner: arczi
Type: Bug | Status: assigned
Priority: Normal | Milestone: CKEditor 3.0
Component: General | Version: SVN (CKEditor)
Keywords: Confirmed Review? |
-------------------------------+--------------------------------------------
Comment(by garry.yao):
The patch works in the expected way, while it's arguable to the html
filter for protected other languages for the following reason:
1. The pre-processing of other embeded '''XML processor instructions''',
like '<?php>' should not handled by html filter which is responsible for
(X)HTML only.The new adding 'regExp' rule for this purpose might get
confused with the other rules.
1. It's more reasonable if the restoring of these instruction tags could
be defer until the (X)HTML has completed and act as some sort of post-
processing with encoded contents inside the comments.
1. Perhaps we should make distinguish between <script>, <style> and
instruction tags, <script> is protected by default, <style> not been
protected(for good of customized inline style), and <%php%> been protected
depend on configuration.
--
Ticket URL: <http://dev.fckeditor.net/ticket/3407#comment:10>
FCKeditor <http://www.fckeditor.net/>
The text editor for Internet
------------------------------------------------------------------------------
Register Now for Creativity and Technology (CaT), June 3rd, NYC. CaT
is a gathering of tech-side developers & brand creativity professionals. Meet
the minds behind Google Creative Lab, Visual Complexity, Processing, &
iPhoneDevCamp asthey present alongside digital heavyweights like Barbarian
Group, R/GA, & Big Spaceship. http://www.creativitycat.com
_______________________________________________
FCKeditor-Trac mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/fckeditor-trac
