I have a dating site project and I need to provide to customers possibility to upload embed code with pleer from 3rd part services like:
<iframe width="100%" height="450" scrolling="no" frameborder="no" src="https://w.soundcloud.com/player/?url=https%3A//api.soundcloud.com/tracks/239151794&auto_play=false&hide_related=false&show_comments=true&show_user=true&show_reposts=false&visual=true"></iframe>
<object width="578" height="31"><param name="movie" value="http://embed.pleer.com/small/track?id=B2nq55Bgri8xfBumq&t=grey"></param><embed src="http://embed.pleer.com/small/track?id=B2nq55Bgri8xfBumq&t=grey" type="application/x-shockwave-flash" width="578" height="31"></embed></object><br> <small><a href="http://pleer.com/tracks/44662018SBp" target="_blank">Cкачать Linkin Park - Numb бесплатно</a> на pleer.com</small>
e.t.c.
So any customer should be able to add embed pleer code from any(or most) 3rd part sound services. Now question - how can I create it secure way?
Or maybe someone can provide solution with validation for most popular services? So customer fill some code and I need some way to validate is it real sound and is this code protected from injections.
Thanks!