Improve this Doc View Source $sanitize
- $sanitizeProvider
- service in module ngSanitize
Overview
Sanitizes an html string by stripping all potentially dangerous tokens.
The input is sanitized by parsing the HTML into tokens. All safe tokens (from a trusted URI list) are then serialized back to a properly escaped HTML string. This means that no unsafe input can make it into the returned string.
The trusted URIs for URL sanitization of attribute values is configured using the functions aHrefSanitizationTrustedUrlList and imgSrcSanitizationTrustedUrlList of $compileProvider.
The input may also contain SVG markup if this is enabled via $sanitizeProvider.
Usage
$sanitize(html);
Arguments
| Param | Type | Details |
|---|---|---|
| html | string | HTML input. |
Returns
string |
Sanitized HTML. |
Example
© 2010–2020 Google, Inc.
Licensed under the Creative Commons Attribution License 3.0.
https://code.angularjs.org/1.8.2/docs/api/ngSanitize/service/$sanitize