14 lines
268 B
Ruby
14 lines
268 B
Ruby
class WYSIWYGSanitizer
|
|
def allowed_tags
|
|
%w[p ul ol li strong em u s a h2 h3]
|
|
end
|
|
|
|
def allowed_attributes
|
|
%w[href]
|
|
end
|
|
|
|
def sanitize(html)
|
|
ActionController::Base.helpers.sanitize(html, tags: allowed_tags, attributes: allowed_attributes)
|
|
end
|
|
|
|
end |