Security filter improvements for user-defined CSS
Remove these ads. Join the Worldbuilders Guild
Security filter improvements for user-defined CSS
- >
- " and '
- "body"
What functionality is missing? What is unsatisfying with the current situation?
Current security filter erases everything between a "prohibited character" and the next whitespace.
These characters however also include key symbols used in CSS, such as '>' (used to designate "direct descendant") or single and double quotes (used in expressions such as DIV[href~="character"]).
On top of that, "body" is another prohibited string - which causes many issues with styling; a number of HTML elements in the template use "body" in their CSS classnames, such as "panel-body" and "card-body". It becomes impossible to style these.
How does this feature request address the current situation?
This update would allow to properly customize existing themes with advanced CSS selectors. It would also make it possible to even address certain elements by their proper classname, since a number of elements are literally named "[something]-body" .. and we are not allowed to use "body" in CSS.
What are other uses for this feature request?
The Team's Response
This is not a feature request. This suggestion is absolutely out of the question.4/300 Votes · +920 points
Votes Cast
-
+100
by redbeardcreator
on 2021-06-28 05:37 -
+200
by Isaac Thompson
on 2021-06-28 05:33 -
+20
by Lenosallose
on 2021-06-28 04:50 -
+300
by Projekt
on 2021-06-28 04:41 -
+300
by Corwan
on 2021-06-28 02:29
Find your way!
Resources
WHO WE ARE
LEGAL
Get the news
Listen to our Podcast
Our Allies
