Allow admins to post unsanitized HTML

[pitaj]

Title says it all. Admins should be able to post unsanitized HTML inside their Markdown since they have access to the option to enable/disable the sanitizer.

[savageautomate]

+1

[julianlam]

What's the use case for this feature?

[savageautomate]

In my case, I would like to limit regular users to using the Markdown to protect against an malicious HTML just at it works today. But there are cases as the site owner/administrator where I would like to add richer custom formatted content than what Markdown can deliver and also potentially embed content from other my services via iframe or raw javascript.

So in summary I would like to maintain the rigid structure and protection for regular user content via Markdown but have the flexibility as the site owner/admin to author and embed other and richer content.

[ShlomoCode]

I too would like such a thing! This is suitable for example if the administrator wants to publish more designed posts - a kind of blog category, but still does not want to get XSS from regular users... :)