Hi, I've two questions about forms: - the first is about esthetically, does exist any GUI for forms? like (every?) forums and wikis, something that allow the user to click for example on B for insert some text in bold, or a button list, table, etc... - the second is about security, if we accept something (for example a description) from users that will be showed it's better to do an html escape with h(), right? but in case i want to use something like textilize or a GUI, if i do an html escape also the style inserted by textilize will be escaped...so, how can i have a more secure form that allow to have some style?
on 2007-01-02 11:38
on 2007-01-02 23:58