reynir/bornhack-website
1
0
Fork 0
Code Issues Pull requests 1 Releases Wiki Activity

use bleach.linkify to make links in markdown clickable automagically, fixes #64

Browse source
This commit is contained in:
Thomas Steen Rasmussen 2019-02-17 17:39:42 +01:00
parent 8c9b2d11bf
commit 3a84dd62d2
3 changed files with 8 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
src/news/templates/news_detail.html
View file

@ -14,5 +14,5 @@
{% endif %} {% endif %}
<h3>{{ news_item.title }} <small>{{ news_item.published_at|date:"Y-m-d" }}</small></h3> <h3>{{ news_item.title }} <small>{{ news_item.published_at|date:"Y-m-d" }}</small></h3>
</div> </div>
{{ news_item.content|trustedcommonmark }} {{ news_item.content|trustedcommonmark|urlize }}
{% endblock %} {% endblock %}

2
src/news/templates/news_index.html
View file

@ -13,7 +13,7 @@ News | {{ block.super }}
<div> <div>
<h3><a href="{% url 'news:detail' slug=item.slug %}">{{ item.title }}</a> <small>{{ item.published_at|date:"Y-m-d" }}</small></h3> <h3><a href="{% url 'news:detail' slug=item.slug %}">{{ item.title }}</a> <small>{{ item.published_at|date:"Y-m-d" }}</small></h3>
</div> </div>
{{ item.content|trustedcommonmark }} {{ item.content|trustedcommonmark|urlize }}
{% if not forloop.last %} {% if not forloop.last %}
<hr /> <hr />
{% endif %} {% endif %}

10
src/utils/templatetags/commonmark.py
View file

@ -1,4 +1,5 @@
import commonmark, bleach import commonmark, bleach
from html5lib.tokenizer import HTMLTokenizer
from django import template from django import template
from django.utils.safestring import mark_safe from django.utils.safestring import mark_safe
@ -7,21 +8,22 @@ from django.template.defaultfilters import stringfilter
register = template.Library() register = template.Library()
@register.filter @register.filter(is_safe=True)
@stringfilter @stringfilter
def trustedcommonmark(value): def trustedcommonmark(value):
"""Returns HTML given some commonmark Markdown. Also allows real HTML, so do not use this with untrusted input.""" """Returns HTML given some commonmark Markdown. Also allows real HTML, so do not use this with untrusted input."""
parser = commonmark.Parser() parser = commonmark.Parser()
renderer = commonmark.HtmlRenderer() renderer = commonmark.HtmlRenderer()
ast = parser.parse(value) ast = parser.parse(value)
return mark_safe(renderer.render(ast)) return bleach.linkify(renderer.render(ast), skip_pre=True, parse_email=True, tokenizer=HTMLTokenizer)
@register.filter
@register.filter(is_safe=True)
@stringfilter @stringfilter
def untrustedcommonmark(value): def untrustedcommonmark(value):
"""Returns HTML given some commonmark Markdown. Cleans actual HTML from input using bleach, suitable for use with untrusted input.""" """Returns HTML given some commonmark Markdown. Cleans actual HTML from input using bleach, suitable for use with untrusted input."""
parser = commonmark.Parser() parser = commonmark.Parser()
renderer = commonmark.HtmlRenderer() renderer = commonmark.HtmlRenderer()
ast = parser.parse(bleach.clean(value)) ast = parser.parse(bleach.clean(value))
return mark_safe(renderer.render(ast)) return bleach.linkify(renderer.render(ast), skip_pre=True, parse_email=True, tokenizer=HTMLTokenizer)