Users should be able to embed video and audio in their work content using the video and audio elements. They should not be able to use these elements in other fields.
We should allow simple video and audio elements (e.g. <video src="video url"></video>) and more complex ones with multiple source and track elements and fallback content, e.g.
Attributes and values that should be automatically added on the video element:
Attributes that should be allowed on the video element:
Attributes and values that should be automatically added on the audio element:
Attributes that should be allowed on the audio element:
Attributes that should be allowed for the source element:
Attributes that should be allowed for the track element:
The src URLs of video, audio, source, and track elements should be checked against a single domain blacklist in the config file. This will allow us to block embeds from certain domains in case of abuse.
Initially, the blacklist should be empty.
Because this also does some refactoring, in addition to making sure the new audio and video tags and their attributes work, we should make sure that the current HTML tags continue to work. Please refer to the “HTML Tag Regression” page on the wiki for instructions.
For testing the audio and video tags:
this site has some good examples of things we want to strip out: https://html5sec.org/
just ctrl-f for audio and video
If you need some audio:
if anyone wants to test audio, wikipedia doesn't seem to block hotlinks:https://en.wikipedia.org/wiki/List_of_animal_sounds
And if you need some more info on the elements: