Reputation: 285
What is correct way of passing html tags in React State?
I am in process of creating Blog using React. I am planning to bring main content of blog from server and passed to React Component via Props/State. Blog content can have html tags like :
- blockquote
- h2 and h3
- img, Video, embed code etc etc
I was hoping to store content of blog in Database/json files along with these tags and render the content as it is on page load. But It seems to be difficult to do it in React. There are three ways we can achieve this :
- dangerouslySetInnerHTML
- Storing content in form array object [html content] ( pushing a String content to array won't work ).
- Passing unicode characters for all html entities.
This Question discuss these approaches pretty well :
Rendering raw html with reactjs
My Queries are :
- Should there be change in over all flow/architecture to handle this?
- What is best way to insert large html content from ajax call to react component to render ?
- What design decisions should be considered to make fully functional and dynamic/scalable Blog ?
- How to get SEO on your dynamic content like blog content ( which is stored in some file/database ). ?
Upvotes: 2
Views: 2904
Answers (1)
Reputation: 6948
There is nothing special about dangerouslySetInnerHTML. Rendering HTML from javascript could always be dangerous, regardless of using React or not, depending on the source of said HTML. For example, if you are rendering a post that you created yourself, and saved to a database, then there is no danger (unless your database has been compromised). But let's say you have comments on a post, and an user sends malicious code as a comment. All other users accessing that page, would fetch the malicious code from the database, and "dangerously" execute it on their browsers. So, what you need to do, is make sure the source of HTML is secure, by sanitizing any user input BEFORE saving to the database. There are libraries you can use to achieve that, example - http://htmlpurifier.org/
Regarding SEO, you can use server side rendering - https://www.smashingmagazine.com/2016/03/server-side-rendering-react-node-express/
Make sure you have all the information you need available on the url, so you don't rely on "state" to render a page, like post id, etc. You can achieve that by using React Router - https://github.com/reactjs/react-router
Upvotes: 4
Related Questions
- How to pass HTML tags in props
- how to write html tags inside a react object
- Can I pass HTML tag as prop - React
- how to use useState in an html tag?
- Reactjs: How to render HTML tags passing from props
- How to let string coming with HTML tags to be rendered in React js?
- React - pass props/state to rendered HTML string?
- React Dynamic Html Tags
- How can i pass a pirce of HTML content into a stateless react component?
- Render HTML tags properly in React