Hi,

I have a use case where I want to convert snippets of html from 'rich textboxes' for users. I don't fully trust this html so I want to make sure that I can control anything external it wants to load. St the moment my only option is to preprocess the html - which I worry is approximate and prone to error.

I suggest some functionality to be added to allow s developer to intercept calls out to external resources and block them, or st least limit them and put a time limit on them. This would make it a more suitable server side tool.

I'm told there is no js processing which is good.

At the moment this leaves me considering writing a small/safe simple html renderer of my own which isn't ideal.

Cheers,

At the moment