Fix issue in editor with blockquotes.

.gitignore

@@ -2,6 +2,8 @@
 *.md
 # Include the README
 !README.md
+# ..  but ignore READMEs in the build folder
+build/README.md
 # And the Module API Docs
 !Module_API_Docs.md
 # And the changelog

build/index.php

@@ -779,6 +779,22 @@ function system_extension_mime_type($ext) {
     return isset($types[$ext]) ? $types[$ext] : null;
 }
 
+function stack_trace($log_trace = true)
+{
+	$result = "";
+	$stackTrace = debug_backtrace();
+	$stackHeight = count($stackTrace);
+	foreach ($stackTrace as $i => $stackEntry)
+	{
+		$result .= "#" . ($stackHeight - $i) . " - " . $stackEntry["file"] . ":" . $stackEntry["line"] . " (" . $stackEntry["function"] . ":" . count($stackEntry["args"]) . ")\n";
+	}
+	
+	if($log_trace)
+		error_log($result);
+	
+	return $result;
+}
+
 ///////////////////////////////////////////////////////////////////////////////
 
 ///////////////////////////////////////////////////////////////////////////////
@@ -1339,7 +1355,6 @@ $actions = new stdClass();
 function add_action($action_name, $func)
 {
 	global $actions;
-	//echo("adding $action_name\n");
 	$actions->$action_name = $func;
 }
 
@@ -3303,7 +3318,13 @@ register_module([
 			$pagedata = $_POST["content"];
 			// Santise it if necessary
 			if($settings->clean_raw_html)
+			{
 				$pagedata = htmlentities($pagedata, ENT_QUOTES);
+				// Un-sanitize greater than signs ('>') as these are commonly
+				// used for blockquotes. This should be a security risk as it is
+				// the less than sign ('<') that is used to open HTML tags.
+				$pagedata = str_replace("&gt;", ">", $pagedata);
+			}
 			
 			// Read in the new page tags, so long as there are actually some tags to read in
 			$page_tags = [];

core.php

@@ -375,6 +375,22 @@ function system_extension_mime_type($ext) {
     return isset($types[$ext]) ? $types[$ext] : null;
 }
 
+function stack_trace($log_trace = true)
+{
+	$result = "";
+	$stackTrace = debug_backtrace();
+	$stackHeight = count($stackTrace);
+	foreach ($stackTrace as $i => $stackEntry)
+	{
+		$result .= "#" . ($stackHeight - $i) . " - " . $stackEntry["file"] . ":" . $stackEntry["line"] . " (" . $stackEntry["function"] . ":" . count($stackEntry["args"]) . ")\n";
+	}
+	
+	if($log_trace)
+		error_log($result);
+	
+	return $result;
+}
+
 ///////////////////////////////////////////////////////////////////////////////
 
 ///////////////////////////////////////////////////////////////////////////////
@@ -935,7 +951,6 @@ $actions = new stdClass();
 function add_action($action_name, $func)
 {
 	global $actions;
-	//echo("adding $action_name\n");
 	$actions->$action_name = $func;
 }
 

module_index.json

@@ -104,7 +104,7 @@
         "author": "Starbeamrainbowlabs",
         "description": "Allows you to edit pages by adding the edit and save actions. You should probably include this one.",
         "id": "page-edit",
-        "lastupdate": 1460044396,
+        "lastupdate": 1460142693,
         "optional": false
     },
     {
@@ -194,7 +194,7 @@
         "author": "Emanuil Rusev & Starbeamrainbowlabs",
         "description": "An upgraded (now default!) parser based on Emanuil Rusev's Parsedown Extra PHP library (https:\/\/github.com\/erusev\/parsedown-extra), which is licensed MIT. Please be careful, as this module adds a some weight to your installation, and also *requires* write access to the disk on first load.",
         "id": "parser-parsedown",
-        "lastupdate": 1460105270,
+        "lastupdate": 1460137501,
         "optional": false
     }
 ]

modules/page-edit.php

@@ -125,7 +125,13 @@ register_module([
 			$pagedata = $_POST["content"];
 			// Santise it if necessary
 			if($settings->clean_raw_html)
+			{
 				$pagedata = htmlentities($pagedata, ENT_QUOTES);
+				// Un-sanitize greater than signs ('>') as these are commonly
+				// used for blockquotes. This should be a security risk as it is
+				// the less than sign ('<') that is used to open HTML tags.
+				$pagedata = str_replace("&gt;", ">", $pagedata);
+			}
 			
 			// Read in the new page tags, so long as there are actually some tags to read in
 			$page_tags = [];