Trusted Src is a tool for site administrators that want to allow untrusted users to insert images and iframed content (usually videos and google maps) in a site they manage.
It is a companion text filter for WYSIWYG Filter module. It will let you:
- Disallow off-site images.
- Allow iframes, but only from trusted sources.
The README.md has configuration and installation instructions.
Similar projects
The following projects perform a similar task to this one. There is a brief note after each about how the project is different than this one:
- HTML Purifier - Status: No further development .
- Irame - Allows iframes in a separate field, not in the body, no listing of trusted sources.
- IFrame Remove Filter - Does not disallow off-site images. No integration with WYSIWYG filter.
- Video Filter - Uses token to sanitize video embeds.
- Wysiwyg Media Embed Provides integration with the CKeditor Media Embed library.
Project information
- Module categories: Administration Tools, Security
- 33 sites report using this module
- Created by gisle on , updated
- Drupal 10 is here!
There are currently no plans to port this to Drupal 10 (or 8/9). The core Media module now provides features for protecting against malicious remote content that makes this project obsolete.
- Stable releases for this project are covered by the security advisory policy.
There are currently no supported stable releases.