jack2
December 24, 2019, 6:15pm
1
This works correctly:
[my link](mailto:alice@alice.com&subject=Hi)
This doesn’t work (an empty <a>
tag is generated):
[my link](mailto:&subject=Hi)
The later formatting allows a user to send a message to whoever he wants. It is used in Discourse, for example, when sharing a post (see the code here ).
4 Likes
jack2
December 24, 2019, 10:10pm
2
Same issue with the email
bbcode. This works correctly:
[email=alice@alice.com&subject=Hi]my link[/email]
But not this:
[email=&subject=Hi]my link[/email]
1 Like
Falco
(Falco)
December 24, 2019, 10:16pm
3
Weird it works on plain markdown-it and on commonmark dingus, so I guess it’s an spec violation.
2 Likes
sam
(Sam Saffron)
December 30, 2019, 12:36am
4
Most likely related to our sanitizer, I am guessing we are stripping due to a potential security issue. Maybe a bit too aggressively.
I support a fix here but it is likely to be very very tricky.
3 Likes
Is there a workaround for this? I notice that writing as HTML doesn’t change anything.:
<a href="mailto:?subject=alfa&body=bravo">charlie</a>
charlie