• Home
• org.mvnpm.at.ui5
• webcomponents-base
• 2.1.2
• source code
• sanitizeHTML.js

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

package.dist.sap.base.security.sanitizeHTML.js Maven / Gradle / Ivy

/*!
 * OpenUI5
 * (c) Copyright 2009-2024 SAP SE or an SAP affiliate company.
 * Licensed under the Apache License, Version 2.0 - see LICENSE.txt.
 */
/*
 * IMPORTANT: This is a private module, its API must not be used and is subject to change.
 * Code other than the OpenUI5 libraries must not introduce dependencies to this module.
 */
import assert from "../assert.js";
import URLListValidator from "./URLListValidator.js";
import "../../ui/thirdparty/caja-html-sanitizer.js";
/**
 * Strips unsafe tags and attributes from HTML.
 *
 * @function
 * @since 1.58
 * @alias module:sap/base/security/sanitizeHTML
 * @param {string} sHTML the HTML to be sanitized.
 * @param {object} [mOptions={}] options for the sanitizer
 * @return {string} sanitized HTML
 * @private
 */
var fnSanitizeHTML = function (sHTML, mOptions) {
  assert(window.html && window.html.sanitize, "Sanitizer should have been loaded");
  mOptions = mOptions || {
    uriRewriter: function (sUrl) {
      // by default, we use the URLListValidator to check the URLs

      if (URLListValidator.validate(sUrl)) {
        return sUrl;
      }
    }
  };
  var oTagPolicy = mOptions.tagPolicy || window.html.makeTagPolicy(mOptions.uriRewriter, mOptions.tokenPolicy);
  return window.html.sanitizeWithPolicy(sHTML, oTagPolicy);
};
export default fnSanitizeHTML;