5 lines
162 KiB
JSON
5 lines
162 KiB
JSON
|
{
|
||
|
|
"id": "api/platform-browser/DomSanitizer",
|
||
|
|
"title": "DomSanitizer",
|
||
|
|
"contents": "\n\n<article>\n <div class=\"breadcrumb-container\">\n <div class=\"breadcrumb\">\n <script type=\"application/ld+json\">\n {\n \"@context\": \"http://schema.org\",\n \"@type\": \"BreadcrumbList\",\n \"itemListElement\": [\n { \"@type\": \"ListItem\", \"position\": 1, \"item\": { \"@id\": \"https://angular.io//api\", \"name\": \"API\" } },\n { \"@type\": \"ListItem\", \"position\": 2, \"item\": { \"@id\": \"https://angular.io/api/platform-browser\", \"name\": \"@angular/platform-browser\" } },\n { \"@type\": \"ListItem\", \"position\": 3, \"item\": { \"@id\": \"https://angular.io/api/platform-browser/DomSanitizer\", \"name\": \"DomSanitizer\" } }\n ]\n }\n </script>\n <a href=\"/api\">API</a> > <a href=\"api/platform-browser\">@angular/platform-browser</a>\n </div>\n <div class=\"github-links\">\n <a href=\"https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L57-L144\" aria-label=\"Suggest Edits\" title=\"Suggest Edits\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">mode_edit</i></a>\n <a href=\"https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L57-L144\" aria-label=\"View Source\" title=\"View Source\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">code</i></a>\n</div>\n </div>\n \n <header class=\"api-header\">\n <h1 id=\"domsanitizer\">DomSanitizer<a title=\"Link to this heading\" class=\"header-link\" aria-hidden=\"true\" href=\"api/platform-browser/DomSanitizer#domsanitizer\"><i class=\"material-icons\">link</i></a></h1>\n \n <label class=\"api-type-label class\">class</label>\n \n <label class=\"api-status-label security\">security</label>\n \n </header>\n \n <aio-toc class=\"embedded\"></aio-toc>\n\n <div class=\"api-body\">\n \n <section class=\"short-description\">\n <p>DomSanitizer helps preventing Cross Site Scripting Security bugs (XSS) by sanitizing\nvalues to be safe to use in the different DOM contexts.</p>\n\n <p><a href=\"api/platform-browser/DomSanitizer#description\">See more...</a></p>\n </section>\n \n<section "security"=\"\">\n <h2 id=\"security-risk\">Security risk<a title=\"Link to this heading\" class=\"header-link\" aria-hidden=\"true\" href=\"api/platform-browser/DomSanitizer#security-risk\"><i class=\"material-icons\">link</i></a></h2>\n <p>Calling any of the <code>bypassSecurityTrust...</code> APIs disables Angular's built-in\nsanitization for the value passed in. Carefully check and audit all values and code paths going\ninto this call. Make sure any user data is appropriately escaped for this security context.\nFor more detail, see the <a href=\"https://g.co/ng/security\">Security Guide</a>.</p>\n\n</section>\n\n \n \n <section class=\"class-overview\">\n<code-example language=\"ts\" hidecopy=\"true\">\nabstract class <a href=\"api/platform-browser/DomSanitizer\" class=\"code-anchor\">DomSanitizer</a> implements <a class=\"code-anchor\" href=\"api/core/Sanitizer\">Sanitizer</a> {\n <a class=\"code-anchor\" href=\"api/platform-browser/DomSanitizer#sanitize\">abstract <span class=\"member-name\">sanitize</span>(context: SecurityContext, value: string | SafeValue): string | null</a>\n <a class=\"code-anchor\" href=\"api/platform-browser/DomSanitizer#bypassSecurityTrustHtml\">abstract <span class=\"member-name\">bypassSecurityTrustHtml</span>(value: string): SafeHtml</a>\n <a class=\"code-anchor\" href=\"api/platform-browser/DomSanitizer#bypassSecurityTrustStyle\">abstract <span class=\"member-name\">bypassSecurityTrustStyle</span>(value: string): SafeStyle</a>\n <a class=\"code-anchor\" href=\"api/platform-browser/DomSanitizer#bypassSecurityTrustScript\">abstract <span class=\"member-name\">bypassSecurityTrustScript</span>(value: string): SafeScript</a>\n <a class=\"code-anchor\" href=\"a
|
||
|
|
}
|