Home / APIs / wp_kses() – Filters content and keeps only allowable HTML elements.

You appear to be a bot. Output may be restricted

Description

Filters content and keeps only allowable HTML elements.

This function makes sure that only the allowed HTML element names, attribute names and attribute values plus only sane HTML entities will occur in $string. You have to remove any slashes from PHP's magic quotes before you call this function. The default allowed protocols are 'http', 'https', 'ftp', 'mailto', 'news', 'irc', 'gopher', 'nntp', 'feed', 'telnet, 'mms', 'rtsp' and 'svn'. This covers all common link protocols, except for 'javascript' which should not be allowed for untrusted users.

Usage

$string = wp_kses( $string, $allowed_html, $allowed_protocols );

Parameters

$string
( string ) required – Content to filter through kses
$allowed_html
( array ) required – List of allowed HTML elements
$allowed_protocols
( array ) optional – Optional. Allowed protocol in links.

Returns

string Filtered content with only allowed HTML elements

Source

File name: wordpress/wp-includes/kses.php
Lines: 1 to 8 of 8

function wp_kses( $string, $allowed_html, $allowed_protocols = array() ) {
  if ( empty( $allowed_protocols ) )
    $allowed_protocols = wp_allowed_protocols();
  $string = wp_kses_no_null( $string, array( 'slash_zero' => 'keep' ) );
  $string = wp_kses_normalize_entities($string);
  $string = wp_kses_hook($string, $allowed_html, $allowed_protocols); // WP changed the order of these funcs and added args to wp_kses_hook
  return wp_kses_split($string, $allowed_html, $allowed_protocols);
}
 

 View on GitHub View on Trac

Published: 11th March 2017 | Last updated: 13th March 2017

Information

Function name: wp_kses
Plugin ref: WordPress
Version: 5.0.3
Sourcefile: wp-includes/kses.php
File ref: wp-includes/kses.php
Deprecated?: No
API Letters: K,W

  • Plugins
  • Themes
  • Shortcodes
  • APIs
  • Files
  • Hooks
  • Classes
  • Home
  • Sites
  • Sitemap
  • Blog
Genesis a2z Genesis Theme Framework a2z
WordPress Dynamic API Reference

Site:  genesis.wp-a2z.org
© Copyright Genesis a2z 2014-2019. All rights reserved.


Website designed and developed by Herb Miller
Proudly powered by WordPress and oik plugins