Forum: Ruby on Rails two questions about forms

Announcement (2017-05-07): is now read-only since I unfortunately do not have the time to support and maintain the forum any more. Please see and for other Rails- und Ruby-related community platforms.
D14a1a862b66147ab66a5389e22e6ae1?d=identicon&s=25 John (Guest)
on 2007-01-02 11:38
Hi, I've two questions about forms:
- the first is about esthetically, does exist any GUI for forms? like
(every?) forums and wikis, something that allow the user to click for
example on B for insert some text in bold, or a button list, table,
- the second is about security, if we accept something (for example a
description) from users that will be showed it's better to do an html
escape with h(), right? but in case i want to use something like
textilize or a GUI, if i do an html escape also the style inserted by
textilize will be, how can i have a more secure form that
allow to have some style?
B0f09f622c913a13b9bfd332fca56563?d=identicon&s=25 Dan Manges (Guest)
on 2007-01-02 23:58
(Received via mailing list)
Regarding the first question, many javascript WYSIWYG editors are
available.  I found this site on Google:

Regarding your second question, do the html_escape before the
textilize: h(text_from_user).textilize

Dan Manges
This topic is locked and can not be replied to.