From a71130880503159ffeb82554dab288b3686f6c46 Mon Sep 17 00:00:00 2001 From: kukinghan Date: Thu, 27 Mar 2025 11:35:56 +0800 Subject: [PATCH] =?UTF-8?q?fix=EF=BC=9A=E6=94=AF=E6=8C=81=E5=AF=8C?= =?UTF-8?q?=E6=96=87=E6=9C=AC=E7=BC=96=E8=BE=91=E5=99=A8=E4=B8=8A=E4=BC=A0?= =?UTF-8?q?=E8=A7=86=E9=A2=91?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../java/com/pig4cloud/pig/common/xss/utils/XssUtil.java | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/pig-common/pig-common-xss/src/main/java/com/pig4cloud/pig/common/xss/utils/XssUtil.java b/pig-common/pig-common-xss/src/main/java/com/pig4cloud/pig/common/xss/utils/XssUtil.java index ec8174c7c..31e7cb46d 100644 --- a/pig-common/pig-common-xss/src/main/java/com/pig4cloud/pig/common/xss/utils/XssUtil.java +++ b/pig-common/pig-common-xss/src/main/java/com/pig4cloud/pig/common/xss/utils/XssUtil.java @@ -69,7 +69,7 @@ public class XssUtil { addTags("a", "b", "blockquote", "br", "caption", "cite", "code", "col", "colgroup", "dd", "div", "span", "embed", "object", "dl", "dt", "em", "h1", "h2", "h3", "h4", "h5", "h6", "i", "img", "li", "ol", "p", "pre", "q", "small", "strike", "strong", "sub", "sup", "table", "tbody", "td", "tfoot", "th", - "thead", "tr", "u", "ul"); + "thead", "tr", "u", "ul","source"); addAttributes("a", "href", "title", "target"); addAttributes("blockquote", "cite"); @@ -99,6 +99,10 @@ public class XssUtil { // 如果添加以下的协议,那么src必须是http 或者 https 开头,相对路径则被过滤掉了, // 所以必须注释掉,允许相对路径的图片资源 // addProtocols("img", "src", "http", "https"); + + //富文本编辑器视频 + addAttributes("div", "data-w-e-type","data-w-e-is-void"); + addAttributes("source", "src", "type"); } @Override -- Gitee