Eldila
Reputation: 15726
How to strip html/javascript from text input in django
What is the easiest way to strip all html/javascript from a string?
Upvotes: 96
Views: 42187
Answers (3)
Eldila
Reputation: 15726
Django provides an utility function to remove HTML tags:
from django.utils.html import strip_tags
my_string = '<div>Hello, world</div>'
my_string = strip_tags(my_string)
print(my_string)
# Result will be "Hello, world" without the <div> elements
This function used to be unsafe on older Django version (before 1.7) but nowadays it is completely safe to use it. Here is an article that reviewed this issue when it was relevant.
Upvotes: 190
Related Questions
- Sanitizing HTML in submitted form data
- how to remove html tags in django template on browser while showing to user
- Django escape only certain HTML tags
- How to strip(not remove) specified tags from a html string using Python?
- Python and Django. Remove all js from html
- Completely stripping certain HTML Tags in Django forms
- How to remove Django HTML code dynamically
- Blocking HTML tags in a webpage
- django remove tags from string python
- Strip javascript code before rendering in django templates