https://bugzilla.wikimedia.org/show_bug.cgi?id=26059
--- Comment #30 from Richard Guk <[email protected]> 2012-11-05 23:55:49 UTC --- Isn't the new ContentHandler designed to handle non-wikitext article "paradata" such as KML/KMZ? Though discussion here had been dormant for a while, I had assumed that it was exactly the kind of case which the new handler would enable. (In reply to comment #28) > By a brief look at template:Attached_KML, it seems that the templates only use > a small portion of the KML standard. It may perhaps be less work to do a > custom > tag (easytimeline style) where we generate a safe kml file from a simpler > language for specifying coordinates to highlight on the map. > > The downside is obviously that in the future people might want more features > from their kml. A sanitised subset is exactly what is sought and required. Wikitext and SVG are already subject to tag whitelisting, which is what KML needs. > >But what if there were no <heading> tags, or none in the first 1KB? > That would take care of the IE6 issue, but as Chris mentions there are other > concerns, in particular allowing third parties to track the ip's of our users. Once external resource requests are filtered (as with SVG files), there is no more privacy leakage than there would be with a plain external URL in an article's wikitext. Google Maps just downloads the raw content of the specified subpage if a reader clicks the Attached KML link. -- Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
