A friend just sent me a link to HTML Purifier, which describes itself this way: “HTML Purifier is a standards-compliant HTML filter library written in PHP. HTML Purifier will not only remove all malicious code (better known as XSS) with a secure yet permissive whitelist, it will also make sure your documents are standards compliant, something only acheivable with a comprehensive knowledge of W3C’s specifications. Tired of using BBCode due to the current landscape of deficient or insecure HTML filters? Have a WYSIWYG editor but never been able to use it? Looking for high-quality, standards-compliant, open-source components for that application you’re building? HTML Purifier is for you!”

Well, considering how awful the code sometimes comes out of some of the top CMS and shopping cart applications, this is a much needed addition to the PHP Libraries.

Paul Gregory has already created an HTML Purifier ModX plugin that will access this library if you install it. That means that ModX, already one of the best Content Management Systems code standards wise, will also produce good code once it’s handed over to the client.

This isn’t something I’ve tried yet, but I’ve got a couple ModX sites in production so I’ll keep you posted. If this works well, it’ll ROCK!

Technorati Tags: HTML Purifier, Web Standards, ModX Content Management

This entry was posted on Tuesday, November 14th, 2006 at 11:46 pm and is filed under Web Design, ModX Stuff. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.