[
https://issues.apache.org/jira/browse/OFBIZ-12653?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17894878#comment-17894878
]
Jacques Le Roux edited comment on OFBIZ-12653 at 11/1/24 4:36 PM:
------------------------------------------------------------------
I must have made something wrong with the test above. It works well in trunk
demo, also locally with trunk HEAD, easy to test.
Just that you lose the HTML code even when using the source feature (<> button)
This is due to the error I reported above.
was (Author: jacques.le.roux):
I must have made something wrong with the test above. It works well in trunk
demo, also locally with trunk HEAD, easy to test.
Just that you lose the HTML code even when using the source feature (<> button)
I guess this is due to the error I reported above.
> Sanitizer <br> fail
> -------------------
>
> Key: OFBIZ-12653
> URL: https://issues.apache.org/jira/browse/OFBIZ-12653
> Project: OFBiz
> Issue Type: Bug
> Components: content
> Affects Versions: Upcoming Branch
> Reporter: Ingo Wolfmayr
> Assignee: Jacques Le Roux
> Priority: Major
> Fix For: 22.01.01
>
> Attachments: CustomSafePolicy.patch, OFBIZ-12653.patch,
> UtilCodec.patch
>
>
> I copied a text with multiple lines from a text editor into the Trumbowyg
> Html field.The editor creates the Html structure using unclosed <br> elements.
> Unfortunately the sanitizer logic just takes <br />. A security warning is
> thrown and the content will not be stored.
> Issue also a request on Trumbowyg request list:
> [https://github.com/Alex-D/Trumbowyg/issues/1283]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
