]> BookStack Code Mirror - bookstack/blobdiff - app/Activity/Models/Comment.php
Comments: Added HTML filter on load, tinymce elem filtering
[bookstack] / app / Activity / Models / Comment.php
index 6efa3df6ff0049a1a6ed3cac13cc092e5a62b470..038788afb9d82f2fcff309c0ad3f12dede873a3e 100644 (file)
@@ -4,6 +4,7 @@ namespace BookStack\Activity\Models;
 
 use BookStack\App\Model;
 use BookStack\Users\Models\HasCreatorAndUpdater;
+use BookStack\Util\HtmlContentFilter;
 use Illuminate\Database\Eloquent\Factories\HasFactory;
 use Illuminate\Database\Eloquent\Relations\BelongsTo;
 use Illuminate\Database\Eloquent\Relations\MorphTo;
@@ -73,4 +74,9 @@ class Comment extends Model implements Loggable
     {
         return "Comment #{$this->local_id} (ID: {$this->id}) for {$this->entity_type} (ID: {$this->entity_id})";
     }
+
+    public function safeHtml(): string
+    {
+        return HtmlContentFilter::removeScriptsFromHtmlString($this->html ?? '');
+    }
 }