edA-qa mort-ora-y
Reputation: 31861
How do I encode an HTML element attribute
How do I encode an HTML attribute from an EJS template in NodeJS. I need to do something like:
<img onmouseover=<% myString %> />
Where myString would then be properly escape and quoted to be a valid attribute.
Upvotes: 3
Views: 4174
Answers (2)
chovy
Reputation: 75666
You could try this:
npm install node-html-encoder
app.locals.encoder = require('node-html-encoder').Encoder;
<%= encoder.htmlEncode('<foo /> "bar"') %>
Upvotes: 4
micnic
Reputation: 11245
Short answer:
myString = myString.replace(/'|\\/g, '\\$&');
But if you need to escape HTML special characters too you can try:
myString = myString.replace(/&/g, '&');
myString = myString.replace(/</g, '<');
myString = myString.replace(/>/g, '>');
P.S. take care to not escape JavaScript operators using the replacements for HTML characters!
Upvotes: 0
Related Questions
- Native JavaScript or ES6 way to encode and decode HTML entities?
- Encode HTML entities in JavaScript
- How to use EJS inside HTML attributes?
- Passing html tags as ejs variables' value
- How to concatenate strings in an html attribute using ejs?
- Encode HTML Entities inside an Element Using jQuery
- Javascript encode HTML entities on server
- HTML attributes escaping
- Encode HTML attributes when inserting HTML in the DOM
- string encoding html