How do you escape raw HTML in Go? -

-

i have managed output text using following line:

fmt.fprintf(w, "<p>some text</p>")

but literally output html tags. how output can safely included in html echo in php?

fmt.fprintf() has no knowledge of html syntax: outputs raw data without escaping (it may formatting not escaping).

you don't use correctly though: second parameter format string, should call rather this:

fmt.fprintf(w, "%s", "<p>some text</p>")

else if text contains format-specific special characters, not expected result.

what want escape html code can safely included in html documents/pages. excellent support html/template package provides powerful template engine automatic escaping functionality being 1 feature.

here's simple example how achieve want:

w := os.stdout  text := "<p>some text</p>" fmt.fprintf(w, "%s\n", text)  tt := `{{.}}` t := template.must(template.new("test").parse(tt)) t.execute(w, text)

output (try on go playground):

<p>some text</p> &lt;p&gt;some text&lt;/p&gt;

also note if want escape html code, there template.htmlescaper() function that:

fmt.println(template.htmlescaper(text))

output:

&lt;p&gt;some text&lt;/p&gt;

Comments

Post a Comment

Popular posts from this blog

Android : Making Listview full screen -

-
<linearlayout xmlns:android="http://schemas.android.com/apk/res/android" xmlns:tools="http://schemas.android.com/tools" android:layout_width="match_parent" android:layout_height="match_parent" android:orientation="vertical" tools:context=".mainactivity"> <edittext android:layout_margintop="5dp" android:layout_width="match_parent" android:layout_height="50dp" android:background="@drawable/location_edittext" android:id="@+id/locationeditext" android:textsize="15sp" android:textcolor="#999" android:paddingleft="15dp" /> <com.example.ravi_gupta.slider.viewpagercustomduration android:layout_width="wrap_content" android:layout_height="0dp" android:id="@+id/viewpager" android:scrollbarstyle="outsideoverlay" android:layout_weight="0.5&quo
Read more

javascript - Parse JSON from the body of the POST -

-
i'm using cameratag.com record video on website. service can send json response server can save data database. don't know how proceed here: the documentation states please note json repsonse passed in body of post , not form parameters. here example of how parse response in ruby: data = json.parse(request.raw_post) video_uuid = data["uuid"] but don't know how data on javascript. i'm not experienced in js please bare me :) post sample: { "uuid": "00012710-4b65-0131-ffe6-22000a499ea4", "camera_uuid": "98373a20-79ee-0130-3e42-1231390fcc11", "created_at": "2013-12-20t05:25:02.000z", "percent_complete": 100, "short_code": "kktb4q", "metadata": { }, "state": "published", "recorded_from": "http://singwho.com", "publish_type": null, "formats": [ { "name&qu
Read more

javascript - Chrome Extension: Interacting with iframe embedded within popup -

-
i writing chrome extension needs interact urls user not have open. therefore using hidden iframes embedded within popup, , attempting click button within iframe. however, receiving same origin policy error. know possible extension interact iframes of different domain via content scripts when iframe on tab user has open, not sure if possible use content scripts interact iframes directly in popup. here code: manifest.json "content_scripts": [ { "js": [ "bin/jquery.min.js", "interaction.js" ], "all_frames": true, "run_at": "document_start", "matches": [ "http://*/*", "https://*/*" ] }], "permissions": [ "activetab", "tabs", "http://*/", "https://*/" ], interaction.js $(document).ready(function() { $('div#iframes').append("<iframe id='shop' src=
Read more