Hello,

  I understand that the forum module passes the posts through the security handler, and when this happens it strips out potential code that is problematic, like embeds.  Which also defeats the ability to add YouTube videos, and other things that some forum operators would like to have.  Seems like a recurring question that comes up on the DNN forums as well.

  I've used the technique, previously, where I could leave the embed tag off the end and DNN would let it pass, but the most recent update seems to have corrected that issue.  Leaving embeds in the forums broken.

  There has to be a better way.  I'm thinking a list in the admin menu that has approved embed hosts that can be entered.  Allowing the admin to decide what they do and do not want to be in their forum.  If something like YouTube is flagged as Ok, that part of the forum post doesn't get sent through the DNN security check.  Or, if it's an all or nothing affair, let us specify users who are trusted to post embeds without passing through the security check.

  Just some ideas, but this is a nagging problem that I wish was fixed.  I've hacked my DNN install in the past to stop that security check from running, which is not secure and whenever I install an update I have to go in and fix it again or just tell my users they can't post youtube in the forums.

  Which, I mean, they all bark how they perfer PHPBB style forums, and things like this make it difficult to argue with them.  Since PHPBB has a free mod that allows it to happen.  We need something like this for DNN Forums.  (Or if I've been missing something for the past year that addresses this, I'm all ears.)