Story #45758

Provide a way to control escaping of content through TypoScript

Added by Sebastian Kurfuerst about 9 years ago. Updated about 9 years ago.

Status:
Accepted
Priority:
Should have
Category:
Content Rendering
Target version:
Start date:
2013-02-22
Due date:
% Done:

0%

Estimated time:

Description

Currently, we always use f:format.raw ViewHelper inside all Content Element templates... The
problem with that is that it's very unsafe, disabling the complete security which was in-built.

Enabling it in all cases is not nice as well, as we need to control that on a case-by-case basis.

That's why we want to introduce a SafeString class, which is directly rendered without any escaping; while in the default case,
the escaping should stay active.

#1

Updated by Gerrit Code Review about 9 years ago

Patch set 2 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/18443

#2

Updated by Gerrit Code Review about 9 years ago

Patch set 1 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/18444

#3

Updated by Gerrit Code Review about 9 years ago

Patch set 1 for branch master has been pushed to the review server.
It is available at https://review.typo3.org/18445

Also available in: Atom PDF