Developer forum

Forum » CMS - Standard features » CK editor on frontend fields for Item Creator - spam filter

CK editor on frontend fields for Item Creator - spam filter

E-mail notifications
Hans Ravnsfjall
Hans Ravnsfjall
Reply
Posted on 02/05/2023 14:29:12

We have a website where it is possible to create Items frontend. For formatted RichText, we use ckeditor.

But there seems to be a problem regardin spam filter / protection agaings SQL injections. Some users get banned when filling the form, and I presume it is caused by unintended code being copied into the richtext areas.

I could turn off spamfilter all together, but that would make the solution vulnerable.

Anybody got any suggestions on how to handle this?

 

/Hans

 


Replies

 
Nicolai Pedersen Dynamicweb Employee
Nicolai Pedersen
Posted on 03/05/2023 09:25:16
Reply

In security settings you can ignore specific fields that are being posted from frontend from the security checks - go to Security settings and look at the , "ignore the following fields" setting.

https://doc.dynamicweb.com/documentation-9/platform/advanced-settings/web-and-http#3518

So if your editor submits a value in a field called "CustomRichText" add that to the above setting.

 

You must be logged in to post in the forum