Is your plugin hosted on GitHub? Make sure to press the "fetch" button next to the repository field to fetch your plugin's info from GitHub rather than typing it all in.
Repository
Name
Home Page
Short description xss_terminate is a plugin in that makes stripping and sanitizing HTML stupid-simple.
Description +xss_terminate+ is a plugin in that makes stripping and sanitizing HTML stupid-simple. Install and forget. And forget about forgetting to <tt>h()</tt> your output, because you won't need to anymore. But +xss_terminate+ is also flexible. By default, it will strip all HTML tags from user input. This is usually what you want, but sometimes you need users to be able to enter HTML. The plugin allows you remove bad HTML with your choice of two whitelist-based sanitizers, or to skip HTML sanitization entirely on a per-field basis. To install, do: script/plugin install http://xssterminate.googlecode.com/svn/trunk/xss_terminate == Usage Installing the plugin creates a +before_save+ hook that will strip HTML tags from all string and text fields. No further configuration is necessary if this is what you want. To customize the behavior, you use the +xss_terminate+ class method. To exempt some fields from sanitization, use the <tt>:except</tt> option with a list of fields not to process: class Comment < ActiveRecord::Base xss_terminate :except => [ :body ] end To sanitize HTML with Rails's built-in sanitization, use the <tt>:sanitize</tt> option: class Review < ActiveRecord::Base xss_sanitize :sanitize => [ :body, :author_name] end To sanitize HTML with {HTML5Lib}[http://code.google.com/p/html5lib/] (<tt>gem install html5</tt> to get it), use the <tt>:html5lib_sanitize</tt> option with a list of fields to sanitize: class Entry < ActiveRecord::Base xss_terminate :html5lib_sanitize => [ :body, :author_name ] end You can combine multiple options if you have some fields you would like skipped and others sanitized. Fields not listed in the option arrays will be stripped. class Message < ActiveRecord::Base xss_terminate :except => [ :body ], :sanitize => [ :title ] end
Description format RDoc MarkDown Textile
License Ruby's Rails' (MIT) GPL LGPL BSD Apache Artistic PublicDomain BSD-type Free-Trial Free-but-Restricted OpenSource Proprietary Shareware Source-available-proprietary Commercial
Category Assets Controllers Internationalization Misc. Enhancements Model Rails Engines Searching and Queries Security Statistics and Logs Testing View Extensions
