Sanitization Settings

Access from the Admin Console

Location: Content > Control Menu > Sanitization Settings

Overview

This page contains three sections that allow the admin to enter information into text areas to define allowed HTML tags and attributes, URL protocols, and iframe sources.

Text Area for HTML Tags and Attributes

Use this text area to define allowed HTML tags and attributes. Each line should contain one tag, followed by all the attributes allowed on that tag, if any (white space is irrelevant).
Example:
a,rel,nodeId,href,target
b
blockquote
br

Allowed URL Protocols

Use this text area to define allowed URL protocols, using a comma-separated list.
Example: http,https,ftp,mailto

Allowed iframe Sources

Use this text area to define allowed iframe sources; one source per line.
Example: <iframe src="http:www.example.com/default.html>

Disable Post Rendering Sanitization Checkbox

Beginning with version 2.5.2, this feature ensures the system will remove HTML tags from the text field before a user can make a post, when they have the markdown-support plugin enabled.


What’s Next
Did this page help you?