besaid.zone / core
forked from tangled.org/core
Monorepo for Tangled
fork atom

appview/pages/markup: add `description` filter

this sanitizer only renders a tiny subset of markdown, to be used in
inline elements like PR titles and repo descriptions etc.

Signed-off-by: oppiliappan <me@oppi.li>

authored by oppi.li and committed by Tangled a74465dd bcb06ae4

options
unified split
Changed files
+38 -4
appview
pages
funcmap.go
markup
markdown.go
sanitizer.go
+6 -1
appview/pages/funcmap.go
··· 206 206 } 207 207 return v.Slice(0, min(n, v.Len())).Interface() 208 208 }, 209 - 210 209 "markdown": func(text string) template.HTML { 211 210 p.rctx.RendererType = markup.RendererTypeDefault 212 211 htmlString := p.rctx.RenderMarkdown(text) 213 212 sanitized := p.rctx.SanitizeDefault(htmlString) 213 + return template.HTML(sanitized) 214 + }, 215 + "description": func(text string) template.HTML { 216 + p.rctx.RendererType = markup.RendererTypeDefault 217 + htmlString := p.rctx.RenderMarkdown(text) 218 + sanitized := p.rctx.SanitizeDescription(htmlString) 214 219 return template.HTML(sanitized) 215 220 }, 216 221 "isNil": func(t any) bool {
+5 -1
appview/pages/markup/markdown.go
··· 161 161 } 162 162 163 163 func (rctx *RenderContext) SanitizeDefault(html string) string { 164 - return rctx.Sanitizer.defaultPolicy.Sanitize(html) 164 + return rctx.Sanitizer.SanitizeDefault(html) 165 + } 166 + 167 + func (rctx *RenderContext) SanitizeDescription(html string) string { 168 + return rctx.Sanitizer.SanitizeDescription(html) 165 169 } 166 170 167 171 type MarkdownTransformer struct {
+27 -2
appview/pages/markup/sanitizer.go
··· 11 11 ) 12 12 13 13 type Sanitizer struct { 14 - defaultPolicy *bluemonday.Policy 14 + defaultPolicy *bluemonday.Policy 15 + descriptionPolicy *bluemonday.Policy 15 16 } 16 17 17 18 func NewSanitizer() Sanitizer { 18 19 return Sanitizer{ 19 - defaultPolicy: defaultPolicy(), 20 + defaultPolicy: defaultPolicy(), 21 + descriptionPolicy: descriptionPolicy(), 20 22 } 23 + } 24 + 25 + func (s *Sanitizer) SanitizeDefault(html string) string { 26 + return s.defaultPolicy.Sanitize(html) 27 + } 28 + func (s *Sanitizer) SanitizeDescription(html string) string { 29 + return s.descriptionPolicy.Sanitize(html) 21 30 } 22 31 23 32 func defaultPolicy() *bluemonday.Policy { ··· 90 99 91 100 return policy 92 101 } 102 + 103 + func descriptionPolicy() *bluemonday.Policy { 104 + policy := bluemonday.NewPolicy() 105 + policy.AllowStandardURLs() 106 + 107 + // allow italics and bold. 108 + policy.AllowElements("i", "b", "em", "strong") 109 + 110 + // allow code. 111 + policy.AllowElements("code") 112 + 113 + // allow links 114 + policy.AllowAttrs("href", "target", "rel").OnElements("a") 115 + 116 + return policy 117 + }