| 1 |
efrain |
1 |
URI.SafeIframeRegexp
|
|
|
2 |
TYPE: string/null
|
|
|
3 |
VERSION: 4.4.0
|
|
|
4 |
DEFAULT: NULL
|
|
|
5 |
--DESCRIPTION--
|
|
|
6 |
<p>
|
|
|
7 |
A PCRE regular expression that will be matched against an iframe URI. This is
|
|
|
8 |
a relatively inflexible scheme, but works well enough for the most common
|
|
|
9 |
use-case of iframes: embedded video. This directive only has an effect if
|
|
|
10 |
%HTML.SafeIframe is enabled. Here are some example values:
|
|
|
11 |
</p>
|
|
|
12 |
<ul>
|
|
|
13 |
<li><code>%^http://www.youtube.com/embed/%</code> - Allow YouTube videos</li>
|
|
|
14 |
<li><code>%^http://player.vimeo.com/video/%</code> - Allow Vimeo videos</li>
|
|
|
15 |
<li><code>%^http://(www.youtube.com/embed/|player.vimeo.com/video/)%</code> - Allow both</li>
|
|
|
16 |
</ul>
|
|
|
17 |
<p>
|
|
|
18 |
Note that this directive does not give you enough granularity to, say, disable
|
|
|
19 |
all <code>autoplay</code> videos. Pipe up on the HTML Purifier forums if this
|
|
|
20 |
is a capability you want.
|
|
|
21 |
</p>
|
|
|
22 |
--# vim: et sw=4 sts=4
|