Home Explore Help
Register Sign In
Kirin
/
shenying
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: f284b3b477
Branches Tags
shenying
/
vendor
/
ezyang
/
htmlpurifier
/
library
/
HTMLPurifier
/
ConfigSchema
/
schema
/
URI.AllowedSchemes.txt

URI.AllowedSchemes.txt 485 B
History Raw

123456789101112131415161718 
  1. URI.AllowedSchemes
    2. 

  2. TYPE: lookup
    3. 

  3. --DEFAULT--
    4. 

  4. array (
    5. 

  5.   'http' => true,
    6. 

  6.   'https' => true,
    7. 

  7.   'mailto' => true,
    8. 

  8.   'ftp' => true,
    9. 

  9.   'nntp' => true,
    10. 

  10.   'news' => true,
    11. 

  11.   'tel' => true,
    12. 

  12. )
    13. 

  13. --DESCRIPTION--
    14. 

  14. Whitelist that defines the schemes that a URI is allowed to have.  This
    15. 

  15. prevents XSS attacks from using pseudo-schemes like javascript or mocha.
    16. 

  16. There is also support for the <code>data</code> and <code>file</code>
    17. 

  17. URI schemes, but they are not enabled by default.
    18. 

  18. --# vim: et sw=4 sts=4
    19.