From 83eeb92a9e1cc6630c9f147b22dc55237c7de063 Mon Sep 17 00:00:00 2001 From: Robert Fischer Date: Mon, 6 Jun 2022 17:53:01 +0200 Subject: [PATCH] [HtmlSanitizer] Fix a few typos in the introduction --- html_sanitizer.rst | 6 +++--- security.rst | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/html_sanitizer.rst b/html_sanitizer.rst index 55d80d65d90..429e4feef5e 100644 --- a/html_sanitizer.rst +++ b/html_sanitizer.rst @@ -5,15 +5,15 @@ HTML Sanitizer The HTML Sanitizer component was introduced in Symfony 6.1. -The HTML Sanitizer components aims at sanitizing/cleaning untrusted HTML +The HTML Sanitizer component aims at sanitizing/cleaning untrusted HTML code (e.g. created by a WYSIWYG editor in the browser) into HTML that can be trusted. It is based on the `HTML Sanitizer W3C Standard Proposal`_. The HTML sanitizer creates a new HTML structure from scratch, taking only the elements and attributes that are allowed by configuration. This means -that the returned HTML is very predicatable (it only contains allowed +that the returned HTML is very predictable (it only contains allowed elements), but it does not work well with badly formatted input (e.g. -invalid HTML). The sanitizer is targetted for two use-cases: +invalid HTML). The sanitizer is targeted for two use cases: * Preventing security attacks based on XSS or other technologies relying on execution of malicious code on the visitors browsers; diff --git a/security.rst b/security.rst index dac009b6c66..c81d7488aad 100644 --- a/security.rst +++ b/security.rst @@ -911,7 +911,7 @@ be ``authenticate``: .. code-block:: html+twig - {# templates/security/login.html.twig #} + {# templates/login/index.html.twig #} {# ... #}