"Display Unsafe Content" - who does the warning under the toggle apply to? | Community
Skip to main content

"Display Unsafe Content" - who does the warning under the toggle apply to?

  • July 9, 2021
  • 1 reply
  • 0 views
K

So when I go to add a Note Box or a Warning Box, the content appears in the article when editing. However, it doesn't show up when publishing. I realized it was because "Display Unsafe Content" toggle was not checked. 

So my question:

Who does that warning apply to when it comes to checking the "Display Unsafe Content". If we have comments off and the only editors are our admins, how can the malicious coding get in? Is it us the editors/admin that accidentally puts it into the articles when doing the coding? 

Also, if all we are adding are these note boxes/warning boxes will that contain malicious coding? Or even small icons that are coded in? 

      1 reply

      G
      • Giuseppe
      • July 13, 2021

      Hi Kat,

      Here's a reference article that describes this functionality in detail - Allowing unsafe HTML in Help Center articles

      In a nutshell, there are safe HTML tags and attributes that are allowed to be put in your articles by default. Other tags and attributes that are outside of those in the list are considered "unsafe". This functionality is designed to protect your end-users who will be browsing through your articles and what it does is to prevent these elements to be sent to the browser of your end-users and executed when opening your articles. 

      To answer your question, the warning applies to the editors who might accidentally insert unsafe HTML tags/use unsafe HTML attributes to your articles. This is a default web development standard for security across sites.

      If you are sure that the elements that you are adding are safe/won't cause any security issues, then you may enable this option and proceed. Here's an example scenario where an editor will need to enable this option - Why are videos not displaying in Help Center?

      What's important is to make sure that the elements you are adding are safe (check the links/sources, review your code, etc.).

       

      Terms & ConditionsCookie settingsAccessibility statement