Actions
Feature proposal #5279
closedRemove webaddress schema stripping
Description
Currently web address field strip the schema and force all URLs to HTTP. This isn't valid depending on the destination and there isn't really any reason to strop the schema to begin with.
This should be done during the fieldtype refactoring.
Updated by beat over 9 years ago
Schemes should be restricted to valid ones.
http and https are sure valid ones.
javascript:...
file:... (e.g. could be misused for / etc / pass)
are very dangerous ones and should not be allowed.
A positive restrictive list for http and https is sure ok, rest I don't see any real application.
Updated by krileon about 8 years ago
Right, only support for HTTP and HTTPS should be allowed.
Updated by krileon about 8 years ago
- Status changed from Assigned to Resolved
- % Done changed from 0 to 100
Actions