canvas-lms

History

Brian Palmer d87c33d91d modify user_content strategy, fixes #3676 user_content will now work for any arbitrary RTE field, no matter if it came from a column, a string nested three levels deep in a serialized column, whatever. let's call this technique "controlled XSS injection" Change-Id: I56eed1f9b546ac7849dc60faa0f2b3801231131e Reviewed-on: https://gerrit.instructure.com/3704 Reviewed-by: Brian Palmer <brianp@instructure.com> Tested-by: Hudson <hudson@instructure.com>	2011-05-19 15:46:56 -06:00
..
index.html.erb	Initial commit.	2011-01-31 18:57:29 -07:00
show.html.erb	modify user_content strategy, fixes #3676	2011-05-19 15:46:56 -06:00

Brian Palmer d87c33d91d modify user_content strategy, fixes #3676

user_content will now work for any arbitrary RTE field, no matter if it
came from a column, a string nested three levels deep in a serialized
column, whatever.

let's call this technique "controlled XSS injection"

Change-Id: I56eed1f9b546ac7849dc60faa0f2b3801231131e
Reviewed-on: https://gerrit.instructure.com/3704
Reviewed-by: Brian Palmer <brianp@instructure.com>
Tested-by: Hudson <hudson@instructure.com>

2011-05-19 15:46:56 -06:00

index.html.erb

Initial commit.

2011-01-31 18:57:29 -07:00

show.html.erb

modify user_content strategy, fixes #3676

2011-05-19 15:46:56 -06:00