Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

The Antisamy filter is blocking some CK editor elements

Description

The Antisamy filter is blocking some elements that are entered vía CK buttons, i.e:

Movies:

When inserting a movie using the "Insert/Edit Movie" button, the filter is blocking it. I attached two example images for a youtube url and an avi file that was uploaded to resources.

Tables:

Click on the table button. Fill in "Caption" and/or "Summary" field/s and add the table. The filter blocks it showing an alert message that you can see in the attached image.

Links:

Click on "link" button. Add a link. The filter blocks it due to the "target" attribute included by default.

A minor note: When the blocking messages appears, you can see in all the images that it is showing <div class="error">.

Attachments

19
  • 29 Apr 2013, 02:19 PM
  • 02 Apr 2013, 01:41 PM
  • 02 Apr 2013, 10:00 AM
  • 01 Apr 2013, 02:49 PM
  • 01 Apr 2013, 02:49 PM
  • 01 Apr 2013, 02:01 PM
  • 01 Apr 2013, 02:01 PM
  • 01 Apr 2013, 02:01 PM
  • 01 Apr 2013, 01:43 PM
  • 01 Apr 2013, 01:40 PM
  • 01 Apr 2013, 01:40 PM
  • 01 Apr 2013, 01:40 PM
100% Done
0

Activity

Show:

Neal Caidin May 15, 2013 at 9:47 AM

Yep, not an AntiSamy issue. I can reproduce on Longsight QA server which presumably has AntiSamy off.

Neal Caidin May 15, 2013 at 9:43 AM

Here is an example of the Youtube issue. This link is from the browser address bar and works - http://www.youtube.com/watch?v=E5KEHurAsCE ; whereas this link is from the Youtube Share This Video option - http://youtu.be/E5KEHurAsCE . Notice how close they are? But the browser address works and the share address does not from within CK editor. Might not be an AntiSamy issue. Needs more testing. I'll test on a non-AntiSamy server.

Neal Caidin May 15, 2013 at 9:39 AM

tested on UvA server for CLE 2.9.2-rc02. I successfully added a link and a youtube video. However, with the Youtube video I had to use the URL in the browser address bar for it to work, using the Youtube "Share" link did not, on both Mac OS X/Safari and Windows 7/ IE 9. Is this ticket worthy? Otherwise seems fine. Thanks.

Robert Long April 29, 2013 at 2:19 PM

Attaching a patch for 2.9 CKeditor only

Andrea Schmidt April 29, 2013 at 11:35 AM

Aaron - I'm signed up for the lists using agschmid@umail.iu.edu and tried to post the qa list, but didn't see it come through. Not sure I have permissions to post.

Fixed

Details

Priority

Affects versions

Fix versions

Components

Assignee

Reporter

Property addition/change required

Yes

Created March 6, 2013 at 2:48 AM
Updated April 25, 2018 at 3:18 PM
Resolved April 2, 2013 at 8:57 PM

Flag notifications