Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-53903

moodle/site:trustcontent is ineffective

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Duplicate
    • Affects Version/s: 2.8.9, 3.0.3
    • Fix Version/s: None
    • Component/s: HTML Editor (TinyMCE)
    • Labels:
      None
    • Affected Branches:
      MOODLE_28_STABLE, MOODLE_30_STABLE

      Description

      Recently we encountered problems with adwares being accidently added by users to course sections, forum topics and places where javascript is allowed.
      After following moodle docs, I enabled Site policies -> Enable trusted content (enabletrusttext) in order to make the capability 'trustcontent' active. I tried to disable the capability for other Teacher role but yet it was able to post and execute JS.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              Unassigned Unassigned
              Reporter:
              sdoiphode Shubhendra Doiphode
              Participants:
              Component watchers:
              Andrew Nicols, Dongsheng Cai, Huong Nguyen, Jun Pataleta, Michael Hawkins, Shamim Rezaie, Simey Lameze
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: