[gh-95] [#705] File upload extensions in IMCE/Allow .js uploads

Blacklist: Even if the User-1 IMCE profile (/admin/config/media/imce/profile/edit/1) has "Permitted file extensions"=* the user is unable to upload a javascript file due to Drupal core blocking such uploads in includes/file.inc unless the 'allow_insecure_uploads' permission is set.

Whitelist: Also, IMCE doesn't seem to be overriding the default Drupal permitted extension list of 'jpg jpeg gif png txt doc xls pdf ppt pps odt ods odp' which means no docx, xlsx, pptx which will be a problem.

I think we can have a permission to set allow_insecure_uploads=true for Site Admin role just on /user/%/imce and only allow js, not php,pl,py,cgi,asp.

URL: http://

Originally submitted by: Eric Rasmussen