Storing HTML in wp_options

Given that you are dealing with email, I’d run wp_kses() with a very limited $allowed_html array similar to this sample from the Codex:

array(
    'a' => array(
        'href' => array(),
        'title' => array()
    ),
    'br' => array(),
    'em' => array(),
    'strong' => array(),
);

HTML rendering is even more squirrelly in email readers than browsers (and there are a lot more readers to worry about) so you want to be very careful what you allow. That is going to mean that you will need to truncate the visual option in your editor too. I am sure there are posts here about doing that.

All in all, I’ll consider using a very simple markdown and skipping the complexity of the editor completely.

Related Posts:

  1. Settings API – sanitizing urls, email addresses and text
  2. add static page to reading settings for custom post type
  3. How to display an admin notice after updating plugin settings?
  4. Settings API – sanitize_callback is not called and it leads to an incorrect behavior
  5. WordPress Settings API – Sanitize Integer
  6. Preserve old values on error in setting API
  7. Seeking clarity on data sanitization fields for settings textarea
  8. Prevent invalid or empty values from being saved to the database and retain the form field values upon error
  9. update_option_$option action not working as expected
  10. Getting all the settings for a plugin
  11. How to handle complex data with Settings API
  12. settings api and the data passed in the parameter
  13. How to save Checkbox-Options in Plugin Options Page
  14. Custom setting field value not working inside add_action init hook
  15. Settings api sanatize callback not being triggered
  16. Can I use add_option for a plugin categories and how?
  17. illegal offset in option add
  18. How to sanitize settings API value
  19. Add multiple custom fields to the general settings page
  20. Settings API vs Theme Customizer
  21. “Error: Options Page Not Found” on Settings Page Submission for an OOP Plugin
  22. How to pass arguments from add_settings_field() to the callback function?
  23. Is get_option function cached?
  24. How to pass variable to add_settings_section() callback?
  25. What are the advantages to the Settings API?
  26. Run function AFTER theme options are saved?
  27. Where to store plugin settings fields
  28. WordPress Settings API, Implementing Tabs On Custom Menu Page
  29. Difference between Option_Group and Option_Name in Register_Settings
  30. What’s the best method for emptying an option created with the Settings API?
  31. Settings API – easiest way of validating checkboxes?
  32. Add your own settings page for plugin
  33. Settings API – creating reusable form elements?
  34. Adding an html editor to plugin settings page
  35. Settings API – changing add_settings_field() output?
  36. Add settings fields on options discussion admin page
  37. register_setting() vs add_option()
  38. Settings API – save an array of options as one setting (array_push?)
  39. Validate an option array
  40. Default WordPress settings API data sanitization
  41. How should I use register_setting, add_settings_section, & add_settings_field in my plugin’s options page?
  42. Custom plugin settings: clicking “save changes” does not display success message
  43. Dynamic settings fields with Settings API
  44. Settings API repeater fields
  45. Setting ‘autoload’ to ‘no’ with Settings API
  46. Add Settings to Custom Post Type
  47. do_settings_sections() doesn’t escape quotes
  48. How to Save Different Settings Options Using Settings API and/or the Theme Optimizer
  49. Serialized settings in rest api
  50. Can’t output do_settings_sections . Can’t understand why
  51. Import / Export Settings API fields values?
  52. Why won’t register_setting() create a setting?
  53. Settings API erases itself?
  54. Saving multiple checkboxes with WordPress settings api
  55. Settings API – how to update multiple options manually?
  56. Possible to add another setting to ‘Front page displays’ setting for Custom Post Type
  57. Setting the uploads directory
  58. Single callback with multiple setting fields
  59. Letting user dynamically create fields using Settings API
  60. Settings API – how to update options manually?
  61. Cannot update my options using wp_ajax
  62. how can I detect that option value has changed?
  63. wordpress settings api add fields
  64. Adding labels to Setting titles with API
  65. array_map() for sanitizing $_POST
  66. register_setting sanitize callback $input is null
  67. Can I dynamically create duplicate fields with the Settings API?
  68. How to display some settings for super admin user only using Settings API
  69. Performance of several get_option() calls
  70. Extend plugin options page
  71. Settings API – input always updates over validation
  72. What exactly is the purpose of settings_fields()?
  73. Can I use the different settings sections over different pages using the save options group?
  74. Is there a limit to the number of options you can store in one settings field of wp_options?
  75. Persist fields with Setting API
  76. wordpress settings API and option array structure
  77. Echo all API Settings sections?
  78. Settings Page won’t save
  79. Settings API get_option best practices
  80. Custom theme options Radio inputs not saving
  81. How do I save custom options on the options page ‘Reading’?
  82. Settings API – generating field value based on a different field?
  83. Submit options page input values with decimals
  84. Correct way check nonce (security) using old Options API
  85. Settings API: Change position of custom setting field
  86. Using multiple settings_fields() on 1 settings page
  87. Settings API store serialized data in the database (The Right Way)
  88. Tab from Settings API resetting all options with INSERT INTO [closed]
  89. Getting settings saved two times in settings page with tab
  90. How to get bool with `get_option()` when already registered setting with type `boolean`
  91. Output ‘do_settings_sections()’ as tabs, not one under the other
  92. Saving plugin’s settings in 1 field in json format
  93. get_option array value defaults and best practices
  94. PHP Notice: Undefined offset: 0 in /wordpress/wp-includes/plugin.php and Register Settings API change
  95. Hide output of add_settings_field()
  96. How to make new plugin setting checkbox default as checked
  97. How to add settings subpage from a plugin to a settings page created in theme?
  98. How to wrap html around Settings API add_settings_section()
  99. Remove Internal Style Sheet if no Value Provided?
  100. Can’t get plugin settings page to save data
Hata!: SQLSTATE[HY000] [1045] Access denied for user 'divattrend_liink'@'localhost' (using password: YES)