(IE) elements that have some javascript event hard coded in it's TAG is still enabled in WYSIWYG mode

[caugb]

When editing () if some element has an javascript event hard coded in it's TAG, this event is still enabled on WYSIWYG mode. Naturally it causes errors... I'm using IE7 and don't know if this bug happens in IE 6 or <6. In Firefox everything is allright.

[ray]

rev [793]: disabled inline events for mouseevents

Btw, mouseover events also did fire in Firefox until the editor was activated

[caugb]

I was still having problems with others events (onload, etc), so i'm using it, that replace the event name from 'on...' to '_on..._':

// in inwardHtml
  // NEW
  // disable inline event handle inside Xinha iframe   
//  html = html.replace(/(<[^>]*onclick=["'])/gi,'$1if(window.top && window.top.Xinha){return false}');   
//  html = html.replace(/(<[^>]*onmouseover=["'])/gi,'$1if(window.top && window.top.Xinha){return false}');   
//  html = html.replace(/(<[^>]*onmouseout=["'])/gi,'$1if(window.top && window.top.Xinha){return false}');   
//  html = html.replace(/(<[^>]*onmouseodown=["'])/gi,'$1if(window.top && window.top.Xinha){return false}');   
//  html = html.replace(/(<[^>]*onmouseup=["'])/gi,'$1if(window.top && window.top.Xinha){return false}');  
  // my version... 
  // using the ' g' modifier some occurrences remained (don't know why), so, do it with a loop.
  var _er = new RegExp("(<[^>]+)\\s(on(mouse(over|out|up|down|move)|click|dblclick|(un)?load|"+
                       "resize|select|focus|blur|key(press|up|down)))\\s*=\\s*", "i");
    while(_er.test(html)) html = html.replace(_er, "$1 _$2_=");
  // /NEW

// in outwardHtml
  // NEW
  // remove disabling of inline event handle inside Xinha iframe 
//  html = html.replace(/(<[^>]*onclick=['"])if\(window\.top && window\.top\.Xinha\)\{return false\}/gi,'$1');   
//  html = html.replace(/(<[^>]*onmouseover=['"])if\(window\.top && window\.top\.Xinha\)\{return false\}/gi,'$1');   
//  html = html.replace(/(<[^>]*onmouseout=['"])if\(window\.top && window\.top\.Xinha\)\{return false\}/gi,'$1');   
//  html = html.replace(/(<[^>]*onmousedown=['"])if\(window\.top && window\.top\.Xinha\)\{return false\}/gi,'$1');   
//  html = html.replace(/(<[^>]*onmouseup=['"])if\(window\.top && window\.top\.Xinha\)\{return false\}/gi,'$1');   
  // my version...
  // using the ' g' modifier some occurrences remained (don't know why), so, do it with a loop.
  var _er = new RegExp("(<[^>]*) _(on(mouse(over|out|up|down|move)|click|dblclick|(un)?load|"+
                       "resize|select|focus|blur|key(press|up|down)))_=", "i");
  while(_er.test(html)) html = html.replace(_er, '$1 $2=');   
  // /NEW

You could use an er as this with your method too. It is not restrict to mouse events... the same problem exists in others events. Why not disable all?

[mokhet]

I do not understand why the test is made with "window.top.Xinha" instead of "parent.Xinha" ?

if Xinha is loaded from a frame or an iframe, i suspect the test "window.top.Xinha" to fail if Xinha is not loaded on top document. Isn't it Ray ?

I have not tested, i'm absolutly out of time to make some tests, but i think this should be :

  // disable inline event handle inside Xinha iframe
  html = html.replace(/(<[^>]*onclick=["'])/gi,'$1if(parent.Xinha){return false}');

[ray]

of course you are right - fixed rev [945]