Halaman utama Jelajahi Bantuan
Masuk
Marak
/
HTML
Liatin 1
Bintangi 0
Fork 0
Berkas Masalah 0 Tarik Permintaan 0 Wiki
Cabang: master
Ranting Tag
HTML
/
lib
/
html.js

html.js 1.8 KB
Permalink Riwayat Mentahan

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192 
  1. var html = exports,
    2. 

  2.     cheerio = require('cheerio');
    3. 

  3. 

  4. //
    5. 

  5. // Enable XSS protection of strings by default
    6. 

  6. //
    7. 

  7. html.safeValues = true;
    8. 

  8. 

  9. html.render = function (data, tpl) {
    10. 

  10. 

  11.   //
    12. 

  12.   // Create the current rendering context by loading the tpl
    13. 

  13.   //
    14. 

  14.   var $ = cheerio.load(tpl);
    15. 

  15. 

  16.   if(typeof data !== "object") {
    17. 

  17.     return $.html();
    18. 

  18.   }
    19. 

  19. 

  20.   if (Array.isArray(data)) {
    21. 

  21. 

  22.     //
    23. 

  23.     // Create a clone of the template we are going to use
    24. 

  24.     //
    25. 

  25.     var clone = $.html(),
    26. 

  26.         result = '';
    27. 

  27. 

  28.     //
    29. 

  29.     // For every item in the array, append a filled out clone
    30. 

  30.     //
    31. 

  31.     data.forEach(function(item){
    32. 

  32.       result += html.render(item, clone)
    33. 

  33.     });
    34. 

  34. 

  35.     return result;
    36. 

  36. 

  37.   } else {
    38. 

  38.     Object.keys(data).forEach(function (prop) {
    39. 

  39.       var attr, og, value;
    40. 

  40. 

  41.       og = prop;
    42. 

  42. 

  43.       //
    44. 

  44.       // Determine if a period was found in property name, 
    45. 

  45.       // if so this indicates the value should be assigned to an XML node attribute
    46. 

  46.       //
    47. 

  47.       if (prop.search('.') !== -1) {
    48. 

  48.         prop = prop.split('.');
    49. 

  49.         attr = prop[1];
    50. 

  50.         prop = prop[0];
    51. 

  51.       }
    52. 

  52. 

  53.       //
    54. 

  54.       // For every property in the data object
    55. 

  55.       //
    56. 

  56.       if(typeof data[prop] === 'object') {
    57. 

  57.         value = html.render(data[prop], $('.' + prop).html())
    58. 

  58.       } else {
    59. 

  59.         value = stripXSS(data[og])
    60. 

  60.       }
    61. 

  61. 

  62.       //
    63. 

  63.       // If the property value is an object, iterate again
    64. 

  64.       //
    65. 

  65.       if ($('.' + prop).length > 0) {
    66. 

  66.         if (attr) {
    67. 

  67.           $('.' + prop).attr(attr, value);
    68. 

  68.         } else {
    69. 

  69.           $('.' + prop).html(value);
    70. 

  70.         }
    71. 

  71.       }
    72. 

  72.     });
    73. 

  73.   }
    74. 

  74. 

  75.   return $.html();
    76. 

  76. 

  77. };
    78. 

  78. 

  79. var stripXSS = html.stripXSS = function (str) {
    80. 

  80. 

  81.   // Prase string into server-side Level 1 DOM ( XML only )
    82. 

  82.   var dom = cheerio.load(str);
    83. 

  83. 

  84.   // Remove any potentially harmful XML tags
    85. 

  85.   dom('script').remove();
    86. 

  86.   dom('meta').remove();
    87. 

  87. 

  88.   // Turn the XML document back into a string of HTML
    89. 

  89.   return dom.html();
    90. 

  90. 

  91. };
    92. 

  92.