feature #19056 [HtmlSanitizer] Add support for sanitizing unlimited length of HTML document (alexandre-daubois)

OskarStark · OskarStark · commit 270605b3e9c4 · 2023-10-20T07:20:46.000+02:00
This PR was merged into the 6.4 branch. Discussion ---------- [HtmlSanitizer] Add support for sanitizing unlimited length of HTML document Fix #19051 Commits ------- 6832048 [HtmlSanitizer] Add support for sanitizing unlimited length of HTML document
diff --git a/html_sanitizer.rst b/html_sanitizer.rst
@@ -1009,6 +1009,14 @@ increase or decrease this limit:
                 ->withMaxInputLength(20000)
         );
 
+It is possible to disable this length limit by setting the max input length to
+``-1``. Beware that it may expose your application to `DoS attacks`_.
+
+.. versionadded:: 6.4
+
+    The support for disabling the length limit of the HTML sanitizer was
+    introduced in Symfony 6.4.
+
 Custom Attribute Sanitizers
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
