[icinga-checkins] icinga.org: icingaweb2/master: PluginOutput: preserve <a target="_blank">

git at icinga.org git at icinga.org
Fri Jun 3 15:33:22 CEST 2016


Module: icingaweb2
Branch: master
Commit: f75925b550b49eea431bed4f47b7a0bb3a837961
URL:    https://git.icinga.org/?p=icingaweb2.git;a=commit;h=f75925b550b49eea431bed4f47b7a0bb3a837961

Author: Alexander A. Klimov <alexander.klimov at netways.de>
Date:   Thu Jun  2 12:38:17 2016 +0200

PluginOutput: preserve <a target="_blank">

refs #11267

---

 modules/monitoring/application/views/helpers/PluginOutput.php |    3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/modules/monitoring/application/views/helpers/PluginOutput.php b/modules/monitoring/application/views/helpers/PluginOutput.php
index ba3013a..997536e 100644
--- a/modules/monitoring/application/views/helpers/PluginOutput.php
+++ b/modules/monitoring/application/views/helpers/PluginOutput.php
@@ -105,7 +105,8 @@ class Zend_View_Helper_PluginOutput extends Zend_View_Helper_Abstract
 
             $config = HTMLPurifier_Config::createDefault();
             $config->set('Core.EscapeNonASCIICharacters', true);
-            $config->set('HTML.Allowed', 'p,br,b,a[href],i,table,tr,td[colspan],div,*[class]');
+            $config->set('HTML.Allowed', 'p,br,b,a[href|target],i,table,tr,td[colspan],div,*[class]');
+            $config->set('Attr.AllowedFrameTargets', array('_blank'));
             // This avoids permission problems:
             // $config->set('Core.DefinitionCache', null);
             $config->set('Cache.DefinitionImpl', null);



More information about the icinga-checkins mailing list