add span.class attribute to purifier.allowed to enable youtube embeds

diff --git a/include/functions.php b/include/functions.php
index 8894f816209ab24fd69dc772329468dd300c99e6..73c5e39fb544d28b585f6002d9d6f194aeadbe25 100644 (file)
--- a/include/functions.php
+++ b/include/functions.php
@@ -2562,7 +2562,7 @@
 
                        $config = HTMLPurifier_Config::createDefault();
 
-                       $allowed = "p,a[href],i,em,b,strong,code,pre,blockquote,br,img[src|alt|title|align|hspace],ul,ol,li,h1,h2,h3,h4,s,object[classid|type|id|name|width|height|codebase],param[name|value],table,tr,td";
+                       $allowed = "p,a[href],i,em,b,strong,code,pre,blockquote,br,img[src|alt|title|align|hspace],ul,ol,li,h1,h2,h3,h4,s,object[classid|type|id|name|width|height|codebase],param[name|value],table,tr,td,span[class]";
 
                        $config->set('HTML.SafeObject', true);
                        @$config->set('HTML', 'Allowed', $allowed);