Important

You are browsing documentation for version 5.0 of OroCommerce, OroCRM, and OroPlatform, maintained until August 2024 and supported until March 2026. See version 5.1 (the latest LTS version) of the Oro documentation for information on latest features.

See our Release Process documentation for more information on the currently supported and upcoming releases.

Rich Text Form Type

Rich Text editor is based on TinyMCE.

HTML Purifier

Rich Text editor uses HTML Purifier which helps to prevent XSS attacks. List of allowed HTML tags you can find in the app.yml file.

The following is an example of how to allow own HTML tags:

src/Acme/Bundle/DemoBundle/Resources/config/oro/app.yml

 oro_form:
     html_purifier_modes:
         default:
             allowed_html_elements:
                 div:
                     attributes:
                         - data-url
                         - data-src
                         - data-value