Fix #1426 - Trim long usernames in public follower/following lists (#2993)

Fix #2221 - Catch OpenSSL exceptions when loading remote avatars/headers/attachments Don't strip "rel" attribute from <a> tags when sanitizing (microformats)
2017-05-11 23:14:00 +02:00
parent 60ecfb87ae
commit 58bcd50f7f
5 changed files with 6 additions and 4 deletions
--- a/app/lib/sanitize_config.rb
+++ b/app/lib/sanitize_config.rb
@@ -8,7 +8,7 @@ class Sanitize
      elements: %w(p br span a),

      attributes: {
-        'a'    => %w(href),
+        'a'    => %w(href rel),
        'span' => %w(class),
      },