On 10/2/06, Patrick Crowley <[EMAIL PROTECTED]> wrote:
I've looked at it, yes. But since I'm only allowing one tag and attribute, it seemed like overkill.
Sounds like a nice place for a whitelist. Rick Olson wrote a handy whitelist plugin for Rails. If you whitelist your textilized/gsubbed output, it could prove more flexible in the long run if you ever decide to change what tags are and aren't allowed. http://weblog.techno-weenie.net/2006/9/3/white-listing-plugin-for-rails -- Nick Zadrozny _______________________________________________ Sdruby mailing list [email protected] http://lists.sdruby.com/mailman/listinfo/sdruby
