How to get the sanitized value (the html string) from SafeHtml object?
Question
我正在使用 DomSanitizer 函数 bypassSecurityTrustHtml() 进行消毒。
1 answers
solution1
3 2018-11-07 11:32:02
The value is stored in a changingThisBreaksApplicationSecurity property. Which probably says enough to not use it.
const safeHtml = this.domSanitizer.bypassSecurityTrustHtml('<div>hello</div>');
const html = safeHtml['changingThisBreaksApplicationSecurity'];
// html === <div>hello</div>;
However, you should only use the sanitizer and the value returned inside your template:
<div [innerHTML]="safeHtml"></div>
Now the div will have the contents of the html passed into the bypassSecurityTrustHtml
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
How to get id of a div from safeHtml?
How to sanitized HTML in React?
How to get Value from html string?
How to get value from string stored as object
set innerHtml from a sanitized html is still dangerous?
How to get element value from JSON object and first convert it to HTML and then to String
How can I digest my Angular directives inside my sanitized HTML string? | AngularJS
Get value of object from string
How to pass data from a Node/Express server to the client (JavaScript) while allowing sanitized HTML but preventing XSS?
How to get the value of the text box from a HTML Coded String
Related Tags