trusttext:

* proposed by Martin Dougiamas * implemented by skodak Usage: 1/ change enabletrusttext to yes in site settings (it is off by default) or set it in config.php 2/ assign moodle/site:trustcontent capability to users whose text submitted in glossary entries, comments, forum posts etc. should not be cleaned == they can use javascript or any other forbidden tags in glossary and forums... done: * core * glossary (without proper upgrade) to do: * data cleaning in upgrades * forum, blocks and some other places (MD decides)
2025-08-05 00:46:50 +02:00 · 2006-08-26 13:00:07 +00:00 · 2006-08-26 13:00:07 +00:00 · 7d8a3cb06a
commit 7d8a3cb06a
parent 8618b509fd
12 changed files with 193 additions and 33 deletions
--- a/lib/db/access.php
+++ b/lib/db/access.php
@ -186,6 +186,20 @@ $moodle_capabilities = array(
        )
    ),
    
+    'moodle/site:trustcontent' => array(
+    
+        'captype' => 'write',
+        'contextlevel' => CONTEXT_SYSTEM,
+        'legacy' => array(
+            'guest' => CAP_PREVENT,
+            'student' => CAP_PREVENT,
+            'teacher' => CAP_PREVENT,
+            'editingteacher' => CAP_ALLOW,
+            'coursecreator' => CAP_ALLOW,
+            'admin' => CAP_ALLOW
+        )
+    ),
+    
    'moodle/user:create' => array(
    
        'captype' => 'write',