You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@allura.apache.org by br...@apache.org on 2018/09/13 19:24:16 UTC

[12/12] allura git commit: Add comment

Add comment


Project: http://git-wip-us.apache.org/repos/asf/allura/repo
Commit: http://git-wip-us.apache.org/repos/asf/allura/commit/d9a7b0f3
Tree: http://git-wip-us.apache.org/repos/asf/allura/tree/d9a7b0f3
Diff: http://git-wip-us.apache.org/repos/asf/allura/diff/d9a7b0f3

Branch: refs/heads/master
Commit: d9a7b0f363052a3d767ebf8b9842b317d50a7876
Parents: b01d26d
Author: Shalitha <sh...@gmail.com>
Authored: Mon Sep 10 22:37:39 2018 +0530
Committer: Dave Brondsema <db...@slashdotmedia.com>
Committed: Thu Sep 13 19:18:27 2018 +0000

----------------------------------------------------------------------
 Allura/allura/lib/utils.py | 1 +
 1 file changed, 1 insertion(+)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/allura/blob/d9a7b0f3/Allura/allura/lib/utils.py
----------------------------------------------------------------------
diff --git a/Allura/allura/lib/utils.py b/Allura/allura/lib/utils.py
index 020720d..2044740 100644
--- a/Allura/allura/lib/utils.py
+++ b/Allura/allura/lib/utils.py
@@ -599,6 +599,7 @@ class ForgeHTMLSanitizerFilter(html5lib.filters.sanitizer.Filter):
     def sanitize_token(self, token):
         """
         Allow iframe tags if the src attribute matches our list of valid sources.
+        Allow input tags if the type attribute matches "checkbox"
         Otherwise use default sanitization.
         """