Skip to content

Commit d0d1bb9

Browse files
ssddanbrownssddanbrown
authored
Merge pull request #6035 from BookStackApp/v25-12
Merge further v25-12 changes into development
2 parents 7d0237c + 25ed242 commit d0d1bb9

File tree

3 files changed

+198
-161
lines changed

3 files changed

+198
-161
lines changed

app/Util/ConfiguredHtmlPurifier.php

Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -71,6 +71,8 @@ protected function setConfig(HTMLPurifier_Config $config, string $cachePath): vo
7171
$config->set('Core.AllowHostnameUnderscore', true);
7272
$config->set('CSS.AllowTricky', true);
7373
$config->set('HTML.SafeIframe', true);
74+
$config->set('HTML.TargetNoopener', false);
75+
$config->set('HTML.TargetNoreferrer', false);
7476
$config->set('Attr.EnableID', true);
7577
$config->set('Attr.ID.HTML5', true);
7678
$config->set('Output.FixInnerHTML', false);
@@ -141,6 +143,12 @@ public function configureDefinition(HTMLPurifier_HTMLDefinition $definition): vo
141143
'drawio-diagram',
142144
'Number',
143145
);
146+
147+
// Allow target="_blank" on links
148+
$definition->addAttribute('a', 'target', 'Enum#_blank');
149+
150+
// Allow mention-ids on links
151+
$definition->addAttribute('a', 'data-mention-user-id', 'Number');
144152
}
145153

146154
public function purify(string $html): string

0 commit comments

Comments
 (0)