Why angular remove attribute of my HTML element content?

Question

I am a newbie of Angular Framework.

I need to prepare a web page to show a list of Calltree

This is CallTree object.

export class CallTree {
callTreeId:number;
division:string;
systemName:string;
location:string;
serviceLevel:number;
missionCritical:string;
timeToStartProcedure:string;
contact:string;
timeToEscalate:string;
logRecipients:string;
status;
version:number;
}

The callTree.contact attribute MAY contains the following content:

  bla bi bi bla...

It is my call-tree.service.ts:

import { CallTree } from './CallTree';
import { Injectable } from '@angular/core';
import { HttpClient, HttpErrorResponse, HttpParams } from '@angular/common/http';
import { Observable,OperatorFunction } from 'rxjs';
import { map, catchError } from 'rxjs/operators';
@Injectable({
  providedIn: 'root'
})
export class CallTreeService {

  constructor(private http: HttpClient){ 

  }
  getActiveCallTreeList():Observable
  {  
    var callTreeIdList:string[];
    var callTreeList: CallTree[]=[];
    return this.http.get("http://myServer/getCallTreeList.php").pipe(
        map((res) => {
          callTreeIdList=Object.keys(res);
          for (var i=0;i");
            console.log(callTree.contact);
            callTree.contact=callTree.contact.replace(/
/g,"
");

            callTree.logRecipients=callTree.logRecipients.replace(/
/g,"
");
            callTreeList.push(callTree);
          }
          return callTreeList;
      }), catchError(this.handleError));
  }
  handleError(handleError: any): OperatorFunction {
    console.log(handleError)
    throw new Error("Error! something went wrong.");
  }

}

This is part of my app.component.html:


                
                    
                        Division
                        System
                        Location
                        Service
Level*
                        Time Interval to start established
procedures#
                        Call-Tree
                        Time Interval to 
escalate
if no reply
                        Appreciation
Log Recipients
                        Operation Manual(s)
                    
      
      
          
              {{ callTree.division }}
              {{ callTree.systemName }}
              {{ callTree.location }}
              {{ callTree.serviceLevel }}
              {{ callTree.timeToStartProcedure }}
              
              {{ callTree.timeToEscalate }}

I can see the content of callTree.contact following in browser console.

bla bi bi bla...

That means in call-tree.service.ts the content of "contact" attribute is ok.

However, the page does not the text in red.

I found that the HTML element content changed to :

bla bi bi bla...

So, why angular remove the style of the element?

Andrey · Accepted Answer

Because innerHtml which you are using performs html sanitization in security reasons and removes the style.

implement pipe as follows

import { Pipe, PipeTransform } from '@angular/core';
import { DomSanitizer } from '@angular/platform-browser';

@Pipe({name: 'safeHtml'})
export class SafeHtml implements PipeTransform {
  constructor(private sanitizer:DomSanitizer){}

  transform(html) {
    return this.sanitizer.bypassSecurityTrustHtml(html);
  }
}

and use innerHtml with that

Why angular remove attribute of my HTML element content?

Answers (1)

Related Questions