hi guys, this really would belong to the tinymce support forum but im using it in codeigniter and i find this place alot better 
anyway, i’ve included a tinymce textarea into the default welcome page and made it print out the contents when i submit the textarea. problem is in security. i want to use this in my application for when users need to leave comments (same way they do on, say, wordpress posts). i enabled the bbcode plugin and some buttons like bold, italic, and underline DO work fine. when i submit a bit of bold text, i get ‘text’. however, despite there being no buttons that dont work with html, the user is still able to paste in html content. so for example. if i copy the first few lines of the welcome page:
Welcome to CodeIgniter!
The page you are looking at is being generated dynamically by CodeIgniter.
If you would like to edit this page you'll find it located at:
system/application/views/welcome_message.php
en the “<code>” tags around the last line.
i can also type in something like [removed][removed] and that works fine too.
i can solve the problem of html being submited by using stript_tags (If there is any codeigniter helpers etc for this sort of stuff it’d be good to know ^^) so that handles that fixes problem #1. problem 2# is that this is a what you see is what you get editor. when i copy a whole lot of content from a website and paste it in, it retains all the styling which will be removed upon submition. that sort of kills the whole WYSIWYG thing.
all i wanted was a textarea that provides a visual way to format your comment with bbcode..its turning out to be harder than i though ;[
