Hopiu/django-markdownx
1
0
Fork 0
mirror of https://github.com/Hopiu/django-markdownx.git synced 2026-03-16 21:40:24 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
django-markdownx/docs/customization/index.html
adi 3f557058d7 Docs update
2019-12-26 20:22:57 +01:00

426 lines
23 KiB
HTML
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

<!DOCTYPE html>
<!--[if IE 8]><html class="no-js lt-ie9" lang="en" > <![endif]-->
<!--[if gt IE 8]><!--> <html class="no-js" lang="en" > <!--<![endif]-->
<head>
<meta charset="utf-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<link rel="shortcut icon" href="../img/favicon.ico">
<title>Customization - Django Markdownx</title>
<link href='https://fonts.googleapis.com/css?family=Lato:400,700|Roboto+Slab:400,700|Inconsolata:400,700' rel='stylesheet' type='text/css'>
<link rel="stylesheet" href="../css/theme.css" type="text/css" />
<link rel="stylesheet" href="../css/theme_extra.css" type="text/css" />
<link rel="stylesheet" href="//cdnjs.cloudflare.com/ajax/libs/highlight.js/9.12.0/styles/github.min.css">
<script>
// Current page data
var mkdocs_page_name = "Customization";
var mkdocs_page_input_path = "customization.md";
var mkdocs_page_url = "/django-markdownx/customization/";
</script>
<script src="../js/jquery-2.1.1.min.js" defer></script>
<script src="../js/modernizr-2.8.3.min.js" defer></script>
<script src="//cdnjs.cloudflare.com/ajax/libs/highlight.js/9.12.0/highlight.min.js"></script>
<script src="//cdnjs.cloudflare.com/ajax/libs/highlight.js/9.12.0/languages/bash.min.js"></script>
<script src="//cdnjs.cloudflare.com/ajax/libs/highlight.js/9.12.0/languages/django.min.js"></script>
<script>hljs.initHighlightingOnLoad();</script>
</head>
<body class="wy-body-for-nav" role="document">
<div class="wy-grid-for-nav">
<nav data-toggle="wy-nav-shift" class="wy-nav-side stickynav">
<div class="wy-side-nav-search">
<a href=".." class="icon icon-home"> Django Markdownx</a>
<div role="search">
<form id ="rtd-search-form" class="wy-form" action="../search.html" method="get">
<input type="text" name="q" placeholder="Search docs" title="Type search term here" />
</form>
</div>
</div>
<div class="wy-menu wy-menu-vertical" data-spy="affix" role="navigation" aria-label="main navigation">
<ul class="current">
<li class="toctree-l1">
<a class="" href="..">Django MarkdownX</a>
</li>
<li class="toctree-l1">
<a class="" href="../installation/">Installation</a>
</li>
<li class="toctree-l1">
<a class="" href="../getting_started/">Getting Started</a>
</li>
<li class="toctree-l1">
<a class="" href="../example/">Example</a>
</li>
<li class="toctree-l1 current">
<a class="current" href="./">Customization</a>
<ul class="subnav">
<li class="toctree-l2"><a href="#customization">Customization</a></li>
<ul>
<li><a class="toctree-l3" href="#general-ex-settings">General (ex. settings)</a></li>
<li><a class="toctree-l3" href="#settings">Settings</a></li>
</ul>
</ul>
</li>
<li class="toctree-l1">
<a class="" href="../javascript/">JavaScript</a>
</li>
<li class="toctree-l1">
<a class="" href="../translations/">Translations</a>
</li>
<li class="toctree-l1">
<a class="" href="../contributions/">Contributions</a>
</li>
<li class="toctree-l1">
<a class="" href="../license/">License</a>
</li>
</ul>
</div>
&nbsp;
</nav>
<section data-toggle="wy-nav-shift" class="wy-nav-content-wrap">
<nav class="wy-nav-top" role="navigation" aria-label="top navigation">
<i data-toggle="wy-nav-top" class="fa fa-bars"></i>
<a href="..">Django Markdownx</a>
</nav>
<div class="wy-nav-content">
<div class="rst-content">
<div role="navigation" aria-label="breadcrumbs navigation">
<ul class="wy-breadcrumbs">
<li><a href="..">Docs</a> &raquo;</li>
<li>Customization</li>
<li class="wy-breadcrumbs-aside">
<a href="https://github.com/neutronX/django-markdownx/edit/master/docs/customization.md"
class="icon icon-github"> Edit on GitHub</a>
</li>
</ul>
<hr/>
</div>
<div role="main">
<div class="section">
<h1 id="customization">Customization<a class="headerlink" href="#customization" title="Permanent link">&para;</a></h1>
<h2 id="general-ex-settings">General (ex. settings)<a class="headerlink" href="#general-ex-settings" title="Permanent link">&para;</a></h2>
<h3 id="widget">Widget<a class="headerlink" href="#widget" title="Permanent link">&para;</a></h3>
<p>The default widget is as seen <a href="https://github.com/neutronX/django-markdownx/blob/master/markdownx/templates/markdownx/widget.html">here</a>.</p>
<p>If you would like to customise this; for instance, using <a href="https://getbootstrap.com">Bootstrap v3</a> to implement side-by-side panes (as seen in :doc:<code>preview animation&lt;index&gt;</code>), you should override the default widgets template by creating your own template and saving it under <code>markdownx/widget2.html</code> (Django 1.11+), or <code>markdownx/widget.html</code> (Django 1.10 and below) in your project's <code>TEMPLATE_DIRS</code>.</p>
<div class="admonition note">
<p class="admonition-title">Note</p>
<p>In the case of Django 1.11+, you will need to <a href="https://docs.djangoproject.com/en/1.11/ref/forms/renderers/#overriding-built-in-widget-templates">change the renderer</a> (Django docs) to <code>TemplatesSetting</code>.</p>
</div>
<p>Here is an example of the contents:</p>
<pre class="highlight"><code class="language-html">&lt;div class="markdownx row"&gt;
&lt;div class="col-md-6"&gt;
&lt;!-- Django 1.10 and below --&gt;
{{ markdownx_editor }}
&lt;!-- Django 1.11+ --&gt;
{% include 'django/forms/widgets/textarea.html' %}
&lt;/div&gt;
&lt;div class="col-md-6"&gt;
&lt;div class="markdownx-preview"&gt;&lt;/div&gt;
&lt;/div&gt;
&lt;/div&gt;</code></pre>
<h3 id="fields">Fields<a class="headerlink" href="#fields" title="Permanent link">&para;</a></h3>
<p>We have ensured that MarkdownX is fully extensible and provides a high degree of flexibility in development.</p>
<p>There are times that you may wish to Markdownify a different type of field, or utilize your own customized widget. To accommodate this, we have provided the tools to apply MarkdownX infrastructure to other fields through <em>Widgets</em>.</p>
<p>For instance, to apply MarkdownX to <code>TextField</code> instances in your Django Admins, you can override the default widget in the Admins module in <code>admin.py</code> of your Django App as follows:</p>
<pre class="highlight"><code class="language-python">from django.db import models
from django.contrib import admin
from markdownx.widgets import AdminMarkdownxWidget
from .models import MyModel
class MyModelAdmin(admin.ModelAdmin):
formfield_overrides = {
models.TextField: {'widget': AdminMarkdownxWidget},
}
admin.site.register(MyModel, MyModelAdmin)</code></pre>
<h3 id="image-tags">Image tags<a class="headerlink" href="#image-tags" title="Permanent link">&para;</a></h3>
<p>Markdown uses <code>![]()</code> tag by default to insert uploaded image file. This generates a simple (X)HTML <code>&lt;image&gt;</code> tag. If you wish to have more control and use your own HTML tags, you may create a custom <code>form_valid()</code> function in
<code>ImageUploadView</code> class, as highlighted <a href="https://github.com/neutronX/django-markdownx/blob/master/markdownx/views.py#L55-L82">here</a>.</p>
<hr />
<h2 id="settings">Settings<a class="headerlink" href="#settings" title="Permanent link">&para;</a></h2>
<p>You may place any of the variables outlined in this page in your <code>settings.py</code>, alter their values and override default behaviours:</p>
<ul>
<li><a href="#markdownx_markdownify_function"><code>MARKDOWNX_MARKDOWNIFY_FUNCTION</code></a></li>
<li><a href="#markdownx_markdown_extensions"><code>MARKDOWNX_MARKDOWN_EXTENSIONS</code></a></li>
<li><a href="#markdownx_markdown_extension_configs"><code>MARKDOWNX_MARKDOWN_EXTENSION_CONFIGS</code></a></li>
<li><a href="#markdownx_urls_path"><code>MARKDOWNX_URLS_PATH</code></a></li>
<li><a href="#markdownx_upload_urls_path"><code>MARKDOWNX_UPLOAD_URLS_PATH</code></a></li>
<li><a href="#markdownx_media_path"><code>MARKDOWNX_MEDIA_PATH</code></a></li>
<li><a href="#markdownx_upload_max_size"><code>MARKDOWNX_UPLOAD_MAX_SIZE</code></a></li>
<li><a href="#markdownx_upload_content_types"><code>MARKDOWNX_UPLOAD_CONTENT_TYPES</code></a></li>
<li><a href="#markdownx_image_max_size"><code>MARKDOWNX_IMAGE_MAX_SIZE</code></a></li>
<li><a href="#markdownx_svg_javascript_protection"><code>MARKDOWNX_SVG_JAVASCRIPT_PROTECTION</code></a></li>
<li><a href="#markdownx_editor_resizable"><code>MARKDOWNX_EDITOR_RESIZABLE</code></a></li>
<li><a href="#markdownx_server_call_latency"><code>MARKDOWNX_SERVER_CALL_LATENCY</code></a></li>
</ul>
<div class="admonition attention">
<p class="admonition-title">Attention</p>
<p>The focus of this section is on the customisation of features controlled in the <strong>backend</strong>. Additional customisations, or to be rather more accurate, <strong>event controls</strong> are enabled in the frontend through JavaScript events. To learn more about these events, see our <a href="../javascript/#events">JavaScript documentation on events</a>.</p>
</div>
<hr />
<h3 id="markdownx_markdownify_function"><code>MARKDOWNX_MARKDOWNIFY_FUNCTION</code><a class="headerlink" href="#markdownx_markdownify_function" title="Permanent link">&para;</a></h3>
<p>Default: <code>'markdownx.utils.markdownify'</code></p>
<p>Markdown to HTML function. Takes an argument of type <code>str()</code> and returns the HTML encoded output as <code>str()</code>.</p>
<p>Default function that compiles markdown using defined extensions. Using custom function can allow you to pre-process or post-process markdown text. See below for more info.</p>
<pre class="highlight"><code class="language-python">MARKDOWNX_MARKDOWNIFY_FUNCTION = 'markdownx.utils.markdownify'</code></pre>
<p>This function uses the <a href="https://pythonhosted.org/Markdown/">Markdown package</a> for trans-compilation.</p>
<div class="admonition note">
<p class="admonition-title">Note</p>
<p>The function name must be entered as string, and the relevant package must be installed and accessible to the current interpreter such that it can later be imported as and when needed. So <code>markdownx.utils.markdownify</code> essentially means <code>from markdownx.utils import markdownify</code>.</p>
</div>
<div class="admonition hint">
<p class="admonition-title">Hint</p>
<p>The default function (<code>markdownx.utils.markdownify</code>) that handles the trans-compilation of Markdown to HTML looks like this:</p>
<pre class="highlight"><code class="language-python">from markdown import markdown
from .settings import (
MARKDOWNX_MARKDOWN_EXTENSIONS,
MARKDOWNX_MARKDOWN_EXTENSION_CONFIGS
)
def markdownify(content):
md = markdown(
text=content,
extensions=MARKDOWNX_MARKDOWN_EXTENSIONS,
extension_configs=MARKDOWNX_MARKDOWN_EXTENSION_CONFIGS
)
return md</code></pre>
</div>
<h3 id="markdownx_markdown_extensions"><code>MARKDOWNX_MARKDOWN_EXTENSIONS</code><a class="headerlink" href="#markdownx_markdown_extensions" title="Permanent link">&para;</a></h3>
<p>Default: empty <code>list()</code></p>
<p>List of <code>str()</code>. List of Markdown extensions that you would like to use. See <a href="https://pythonhosted.org/Markdown/extensions/index.html#officially-supported-extensions">available extensions</a> in Markdown docs. For instance, the extension <a href="https://pythonhosted.org/Markdown/extensions/extra.html">extra</a> enables features such as abbreviations, footnotes, tables and so on.</p>
<p>We recommend you read the documentation for the <a href="https://pythonhosted.org/Markdown/">Markdown package</a>, our default Markdown trans-compiler.</p>
<pre class="highlight"><code class="language-python">MARKDOWNX_MARKDOWN_EXTENSIONS = [
'markdown.extensions.extra'
]</code></pre>
<h3 id="markdownx_markdown_extension_configs"><code>MARKDOWNX_MARKDOWN_EXTENSION_CONFIGS</code><a class="headerlink" href="#markdownx_markdown_extension_configs" title="Permanent link">&para;</a></h3>
<p>Default: empty <code>dict()</code></p>
<p>Configuration object for used markdown extensions. See <code>extension_configs</code> in <a href="https://pythonhosted.org/Markdown/reference.html#markdown">Markdown docs</a>. Here is a general idea:</p>
<pre class="highlight"><code class="language-python">MARKDOWNX_MARKDOWN_EXTENSION_CONFIGS = {
'extension_name_1': {
'option_1': 'value_1'
}
}</code></pre>
<h3 id="markdownx_urls_path"><code>MARKDOWNX_URLS_PATH</code><a class="headerlink" href="#markdownx_urls_path" title="Permanent link">&para;</a></h3>
<p>Default: <code>'/markdownx/markdownify/'</code></p>
<p>Relative URL to which the Markdown text is sent to be encoded as HTML.</p>
<pre class="highlight"><code class="language-python">MARKDOWNX_URLS_PATH = '/markdownx/markdownify/'</code></pre>
<h3 id="markdownx_upload_urls_path"><code>MARKDOWNX_UPLOAD_URLS_PATH</code><a class="headerlink" href="#markdownx_upload_urls_path" title="Permanent link">&para;</a></h3>
<p>Default: <code>'/markdownx/upload/'</code></p>
<p>URL that accepts file uploads (images) through an AJAX <code>POST</code> request. The request response will contain markdown formatted markup containing the relative URL for the image.</p>
<pre class="highlight"><code class="language-python">MARKDOWNX_UPLOAD_URLS_PATH = '/markdownx/upload/'</code></pre>
<h3 id="markdownx_media_path"><code>MARKDOWNX_MEDIA_PATH</code><a class="headerlink" href="#markdownx_media_path" title="Permanent link">&para;</a></h3>
<p>Default: <code>'markdownx/'</code></p>
<p>The path where the images will be stored in your <code>MEDIA_ROOT</code> directory.</p>
<pre class="highlight"><code class="language-python">MARKDOWNX_MEDIA_PATH = 'markdownx/'</code></pre>
<div class="admonition tip">
<p class="admonition-title">Tip</p>
<p><strong>Recommended</strong>: Storing all uploaded images in a single directory would over time results in a lot files being stored in one location. This would slow down the process of saving and loading files substantially, and can in turn lead to your website becoming very slow when it comes to loading images. To address this issue, it is better to save the uploads in different directories. Here is an example of how this can be achieved:</p>
<pre class="highlight"><code class="language-python">from datetime import datetime
MARKDOWNX_MEDIA_PATH = datetime.now().strftime('markdownx/%Y/%m/%d')</code></pre>
<p>This ensures that uploaded files are stored in a different directory on the basis of the date on which they are uploaded. So for instance; an image uploaded on the 15th of April 2017 will be stored under <code>media/markdownx/2017/4/15/unique_name.png</code>.</p>
</div>
<h3 id="markdownx_upload_max_size"><code>MARKDOWNX_UPLOAD_MAX_SIZE</code><a class="headerlink" href="#markdownx_upload_max_size" title="Permanent link">&para;</a></h3>
<p>Default: <code>50 * 1024 * 1024</code> bytes</p>
<p>Maximum image size allowed in bytes: Default is 50MB, which is equal to 52,428,800 bytes.</p>
<pre class="highlight"><code class="language-python">MARKDOWNX_UPLOAD_MAX_SIZE = 50 * 1024 * 1024</code></pre>
<div class="admonition tip">
<p class="admonition-title">Tip</p>
<p>It is considered a good practice to display large numbers in a meaningful way. For instance, 52,438,800 bytes is better displayed in code as <code>= 50 * 1024 * 1024 # 50 MB in bytes</code> instead (the comment is also important). Fellow programmers will thank you for this in the future!</p>
</div>
<h3 id="markdownx_upload_content_types"><code>MARKDOWNX_UPLOAD_CONTENT_TYPES</code><a class="headerlink" href="#markdownx_upload_content_types" title="Permanent link">&para;</a></h3>
<p>Default: <code>['image/jpeg', 'image/png', 'image/svg+xml']</code></p>
<p>Image formats that the user is permitted to upload. Enable / disable support for different image formats.</p>
<pre class="highlight"><code class="language-python">MARKDOWNX_UPLOAD_CONTENT_TYPES = ['image/jpeg', 'image/png', 'image/svg+xml']</code></pre>
<h3 id="markdownx_image_max_size"><code>MARKDOWNX_IMAGE_MAX_SIZE</code><a class="headerlink" href="#markdownx_image_max_size" title="Permanent link">&para;</a></h3>
<p>Default: <code>{ 'size': (500, 500), 'quality': 90 }</code></p>
<p>Different options describing final image processing; e.g. dimension and quality.</p>
<div class="admonition note">
<p class="admonition-title">Note</p>
<p>Quality restrictions do not apply to <code>image/svg+xml</code> formatted graphics.</p>
</div>
<p>Options are:</p>
<table>
<thead>
<tr>
<th>Option</th>
<th>Value</th>
<th>Description</th>
</tr>
</thead>
<tbody>
<tr>
<td>size</td>
<td><code>(width,height)</code></td>
<td>when one of the dimensions is set to zero, e.g. <code>(500, 0)</code>, the height is calculated automatically so as to keep the dimensions intact.</td>
</tr>
<tr>
<td>quality</td>
<td><code>int</code></td>
<td>image quality from <code>0</code> (full compression) to <code>100</code> (no compression). Default: <code>90</code></td>
</tr>
<tr>
<td>crop</td>
<td><code>Boolean</code></td>
<td>if <code>True</code>, the <code>size</code> is used to crop the image. Default: <code>False</code></td>
</tr>
<tr>
<td>upscale</td>
<td><code>Boolean</code></td>
<td>if image dimensions are smaller than those defined in <code>size</code>, upscale to <code>size</code> dimensions. Default: <code>False</code></td>
</tr>
</tbody>
</table>
<pre class="highlight"><code class="language-python">MARKDOWNX_IMAGE_MAX_SIZE = {
'size': (500, 500),
'quality': 90
}</code></pre>
<h3 id="markdownx_svg_javascript_protection"><code>MARKDOWNX_SVG_JAVASCRIPT_PROTECTION</code><a class="headerlink" href="#markdownx_svg_javascript_protection" title="Permanent link">&para;</a></h3>
<p>Default: <code>True</code></p>
<p>SVG graphics are in essence XML files formatted in a specific way; which means that they can contain JavaScript codes. This introduces a potential front-end security vulnerability for prospective users who will see the SVG image in context; e.g. it may be employed to collect the user's IP address or other personal information.</p>
<div class="admonition note">
<p class="admonition-title">Note</p>
<p>This type of attack is known as <a href="https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)">XSS (Cross-site Scripting) attack</a>. See this <a href="https://www.owasp.org/images/0/03/Mario_Heiderich_OWASP_Sweden_The_image_that_called_me.pdf">presentation</a> by Mario Heiderich to learn more on SVG XSS attacks. There are a number of ways to deal with this vulnerability.</p>
<p>Django is great at security, and provides very good protection against XSS attacks (see the Django <a href="https://docs.djangoproject.com/en/dev/topics/security/#cross-site-scripting-xss-protection">documentation</a> for additional information) providing the <a href="https://docs.djangoproject.com/en/dev/ref/middleware/#module-django.middleware.csrf">CSRF protection middleware</a> is enabled. When it comes to AJAX requests, however, CSRF protection may sometimes be disabled for various reasons.</p>
</div>
<p>As a last resort, however, we have included an <em>optional</em> integrity check against JavaScript tags for SVG formatted files just in case everything else is disabled. This protection is enabled by default, and may be disabled by setting the value to <code>False</code> if so is desired.</p>
<pre class="highlight"><code class="language-python">MARKDOWNX_SVG_JAVASCRIPT_PROTECTION = True</code></pre>
<div class="admonition important">
<p class="admonition-title">Important</p>
<p>MarkdownX does <em>not</em> disable CSRF protection by default, and requires the token for all AJAX request.</p>
</div>
<h3 id="markdownx_editor_resizable"><code>MARKDOWNX_EDITOR_RESIZABLE</code><a class="headerlink" href="#markdownx_editor_resizable" title="Permanent link">&para;</a></h3>
<p>Default: <code>True</code></p>
<p>Change the editor's height to match the height of the inner contents whilst typing.</p>
<pre class="highlight"><code class="language-python">MARKDOWNX_EDITOR_RESIZABLE = True</code></pre>
<h3 id="markdownx_server_call_latency"><code>MARKDOWNX_SERVER_CALL_LATENCY</code><a class="headerlink" href="#markdownx_server_call_latency" title="Permanent link">&para;</a></h3>
<p>Default: <code>500</code> miliseconds</p>
<p>Latency (minimum lag) between server calls as <code>int</code>. Minimum allowed: 500 milliseconds.</p>
<div class="admonition note">
<p class="admonition-title">Note</p>
<p>When the value of a MarkdownX editor is changed, a call is made to the server to trans-compile Markdown into HTML. However, a minimum latency of <strong>500 milliseconds</strong> has been imposed between the calls. This is to prevent the bombardment of the server with a huge number of HTTP requests (you don't want to DDoS your own server). This latency maintains a balance between responsiveness and protection, and is well-suited for medium traffic. Nonetheless, if your website enjoys a particularly high traffic, you may wish to alter this value slightly depending on the number of CPUs, the amount memory, and how much you are willing to compromise on responsiveness.</p>
</div>
<pre class="highlight"><code class="language-python">MARKDOWNX_SERVER_CALL_LATENCY = 500 # milliseconds</code></pre>
<div class="admonition attention">
<p class="admonition-title">Attention</p>
<p>Any values below 500 milliseconds is silently ignored and replaced.</p>
</div>
</div>
</div>
<footer>
<div class="rst-footer-buttons" role="navigation" aria-label="footer navigation">
<a href="../javascript/" class="btn btn-neutral float-right" title="JavaScript">Next <span class="icon icon-circle-arrow-right"></span></a>
<a href="../example/" class="btn btn-neutral" title="Example"><span class="icon icon-circle-arrow-left"></span> Previous</a>
</div>
<hr/>
<div role="contentinfo">
<!-- Copyright etc -->
</div>
Built with <a href="http://www.mkdocs.org">MkDocs</a> using a <a href="https://github.com/snide/sphinx_rtd_theme">theme</a> provided by <a href="https://readthedocs.org">Read the Docs</a>.
</footer>
</div>
</div>
</section>
</div>
<div class="rst-versions" role="note" style="cursor: pointer">
<span class="rst-current-version" data-toggle="rst-current-version">
<a href="https://github.com/neutronX/django-markdownx/" class="fa fa-github" style="float: left; color: #fcfcfc"> GitHub</a>
<span><a href="../example/" style="color: #fcfcfc;">&laquo; Previous</a></span>
<span style="margin-left: 15px"><a href="../javascript/" style="color: #fcfcfc">Next &raquo;</a></span>
</span>
</div>
<script>var base_url = '..';</script>
<script src="../js/theme.js" defer></script>
<script src="../search/main.js" defer></script>
</body>
</html>
Reference in a new issue View git blame Copy permalink