tweaking attributes of allowed tags

dorgan@donaldorgan.com · dorgan@donaldorgan.com · commit 526aa19b46ca · 2013-06-03T01:42:51.000Z
diff --git a/clib/bootstrap-wysiwyg/bootstrap-wysihtml5.js b/clib/bootstrap-wysiwyg/bootstrap-wysihtml5.js
@@ -382,9 +382,18 @@
                 "h3": {},
                 "blockquote": {},
                 "u": 1,
-                "img": {},
+                "img": {
+                    check_attributes: {
+                        src: "any",
+                        width: "any",
+                        alt: "any",
+                        border: "numbers"
+                    }
+                },
                 "a":  {
                     check_attributes: {
+                        title: "any",
+                        target: "any",
                         href:   "url" // important to avoid XSS
                     }
                 },
diff --git a/clib/bootstrap-wysiwyg/wysihtml5-0.3.0.min.js b/clib/bootstrap-wysiwyg/wysihtml5-0.3.0.min.js
@@ -5050,6 +5050,11 @@ wysihtml5.dom.parse = (function() {
   
   // ------------ attribute checks ------------ \\
   var attributeCheckMethods = {
+    any: (function() {
+       return function(attributeValue) {
+           return attributeValue;
+       }
+    })(),
     url: (function() {
       var REG_EXP = /^https?:\/\//i;
       return function(attributeValue) {
