[Bps-public-commit] rt-extension-permissivehtmlmail branch, master, updated. 489ce641451f0c9b465663242a6b55c6cbe901c5

Jim Brandt jbrandt at bestpractical.com
Fri Feb 7 13:45:06 EST 2014 

The branch, master has been updated
       via  489ce641451f0c9b465663242a6b55c6cbe901c5 (commit)
       via  f4bc18daac30e015e7435b630d2283444e4392c9 (commit)
      from  495818c445224850d461b651fc2a1811bcf94811 (commit)

Summary of changes:
 lib/RT/Extension/PermissiveHTMLMail.pm | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

- Log -----------------------------------------------------------------
commit f4bc18daac30e015e7435b630d2283444e4392c9
Author: Jim Brandt <jbrandt at bestpractical.com>
Date:   Fri Feb 7 13:43:14 2014 -0500

    Exclude base tag to avoid RT page links going to other domains

diff --git a/lib/RT/Extension/PermissiveHTMLMail.pm b/lib/RT/Extension/PermissiveHTMLMail.pm
index 6b93535..a001a50 100644
--- a/lib/RT/Extension/PermissiveHTMLMail.pm
+++ b/lib/RT/Extension/PermissiveHTMLMail.pm
@@ -34,6 +34,7 @@ if ( RT->Config->Get( 'AllowDangerousHTML' ) ) {
                 head   => 0,
                 body   => 0,
                 meta   => 0,
+                base   => 0,
             ],
             comment => 0,
         );

commit 489ce641451f0c9b465663242a6b55c6cbe901c5
Author: Jim Brandt <jbrandt at bestpractical.com>
Date:   Fri Feb 7 13:44:41 2014 -0500

    Fix attributes typo in docs

diff --git a/lib/RT/Extension/PermissiveHTMLMail.pm b/lib/RT/Extension/PermissiveHTMLMail.pm
index a001a50..191c82f 100644
--- a/lib/RT/Extension/PermissiveHTMLMail.pm
+++ b/lib/RT/Extension/PermissiveHTMLMail.pm
@@ -80,7 +80,7 @@ that it recognizes.
 Installing this extension also additionally provides a
 C<$AllowDangerousHTML> configuration option.  Setting this alters RT
 from using a whitelist (allowing only HTML tags and attributes which it
-knows to be safe) to using a blacklist (skip tags and ributes which are
+knows to be safe) to using a blacklist (skip tags and attributes which are
 unsafe).  This is B<unsafe> and B<dangerous>, as there are guaranteedly
 further unsafe tags which RT does not know to prevent.  B<Enabling this
 feature allows your RT account to be compromised by a malicious email>.

-----------------------------------------------------------------------

More information about the Bps-public-commit mailing list