我收到此错误是因为其中一位用户在帖子中添加了< 3
Error: [$sanitize:badparse] The sanitizer was unable to parse the following block of html: <3
我写的代码是ng-bind-html =“Detail.details”
那可能吗?
谢谢!
您可以创建过滤器来清理您的html.
我在其中使用了strip_tags函数
http://phpjs.org/functions/strip_tags/
- angular.module('filters',[]).factory('truncate',function () {
- return function strip_tags(input,allowed) {
- allowed = (((allowed || '') + '')
- .toLowerCase()
- .match(/<[a-z][a-z0-9]*>/g) || [])
- .join(''); // making sure the allowed arg is a string containing only tags in lowercase (<a><b><c>)
- var tags = /<\/?([a-z][a-z0-9]*)\b[^>]*>/gi,commentsAndPHPTags = /<!--[\s\S]*?-->|<\?(?:PHP)?[\s\S]*?\?>/gi;
- return input.replace(commentsAndPHPTags,'')
- .replace(tags,function($0,$1) {
- return allowed.indexOf('<' + $1.toLowerCase() + '>') > -1 ? $0 : '';
- });
- }
- });
控制器:
- angular.module('myApp',['filters'])
- .controller('IndexController',['$scope','truncate','$sce',function($scope,truncate,$sce){
- $scope.text="";
- $scope.$watch('text',function(){
- $scope.sanitized = $sce.trustAsHtml(truncate($scope.text,'<a><br>'));
- });
- }]);
视图:
- <div ng-bind-html="sanitized"></div>
