Support for iframe.allowfullscreen attribute

ezyang / htmlpurifier

Standards compliant HTML filter written in PHP

http://htmlpurifier.org

GNU Lesser General Public License v2.1

3.02k stars 323 forks source link

Support for iframe.allowfullscreen attribute #409

Closed zerocrates closed 1 week ago

zerocrates commented 1 week ago

HTMLPurifier knows about support for allowing fullscreen for objects/Flash, but not iframes.

Is there interest/appetite in adding this for iframes? It's in the standard, and is very common in embed codes of the type that might be expected to be allowed by SafeIframe.

I'd be happy to send a PR if there's a sense this would be accepted. Possibly behind a setting like HTML.Trusted, or a specific one for this alone?

ezyang commented 1 week ago

Feel free to chuck whatever you want in Trusted.