On Sep 29, 6:34 pm, Eric Shulman <[email protected]> wrote: > > How do you plan do deal with inline scripts. eg: inlineScriptPlugin > Sorry for the typo. > http://www.TiddlyTools.com/#InlineJavascriptPlugin > is a *plugin*. Thus, TiddlySpace already has the ability to prevent > processing of <script>...</script> blocks, simply by not including > InlineJavascriptPlugin in the space. That's right. But what can be done, will be done. So if the plugin is included into a trusted space, it can be loaded and it will start work. A tiddler with <script>some stuff</script> needs to be handled in some way and I wanted to know how. Not including is only one solution.
====== Putting the plugin on a blacklist will not work, because adding an empty line or renaming will remove it from the list. So imho a whitelist will be needed, to check which systemPlugins, systemScripts, are allowed. Hence, there is the question. How to deal with a whitelist. -mario -- You received this message because you are subscribed to the Google Groups "TiddlyWikiDev" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/tiddlywikidev?hl=en.
