honeymoose/angular-cn
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
angular-cn/aio/dist/generated/docs/api/platform-browser/DomSanitizer.json

5 lines
162 KiB
JSON
Raw Permalink Blame History

{
"id": "api/platform-browser/DomSanitizer",
"title": "DomSanitizer",
"contents": "\n\n<article>\n <div class=\"breadcrumb-container\">\n <div class=\"breadcrumb\">\n <script type=\"application/ld+json\">\n {\n \"@context\": \"http://schema.org\",\n \"@type\": \"BreadcrumbList\",\n \"itemListElement\": [\n { \"@type\": \"ListItem\", \"position\": 1, \"item\": { \"@id\": \"https://angular.io//api\", \"name\": \"API\" } },\n { \"@type\": \"ListItem\", \"position\": 2, \"item\": { \"@id\": \"https://angular.io/api/platform-browser\", \"name\": \"@angular/platform-browser\" } },\n { \"@type\": \"ListItem\", \"position\": 3, \"item\": { \"@id\": \"https://angular.io/api/platform-browser/DomSanitizer\", \"name\": \"DomSanitizer\" } }\n ]\n }\n </script>\n <a href=\"/api\">API</a> > <a href=\"api/platform-browser\">@angular/platform-browser</a>\n </div>\n <div class=\"github-links\">\n <a href=\"https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L57-L144\" aria-label=\"Suggest Edits\" title=\"Suggest Edits\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">mode_edit</i></a>\n <a href=\"https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L57-L144\" aria-label=\"View Source\" title=\"View Source\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">code</i></a>\n</div>\n </div>\n \n <header class=\"api-header\">\n <h1 id=\"domsanitizer\">DomSanitizer<a title=\"Link to this heading\" class=\"header-link\" aria-hidden=\"true\" href=\"api/platform-browser/DomSanitizer#domsanitizer\"><i class=\"material-icons\">link</i></a></h1>\n \n <label class=\"api-type-label class\">class</label>\n \n <label class=\"api-status-label security\">security</label>\n \n </header>\n \n <aio-toc class=\"embedded\"></aio-toc>\n\n <div class=\"api-body\">\n \n <section class=\"short-description\">\n <p>DomSanitizer helps preventing Cross Site Scripting Security bugs (XSS) by sanitizing\nvalues to be safe to use in the different DOM contexts.</p>\n\n <p><a href=\"api/platform-browser/DomSanitizer#description\">See more...</a></p>\n </section>\n \n<section &#x22;security&#x22;=\"\">\n <h2 id=\"security-risk\">Security risk<a title=\"Link to this heading\" class=\"header-link\" aria-hidden=\"true\" href=\"api/platform-browser/DomSanitizer#security-risk\"><i class=\"material-icons\">link</i></a></h2>\n <p>Calling any of the <code>bypassSecurityTrust...</code> APIs disables Angular's built-in\nsanitization for the value passed in. Carefully check and audit all values and code paths going\ninto this call. Make sure any user data is appropriately escaped for this security context.\nFor more detail, see the <a href=\"https://g.co/ng/security\">Security Guide</a>.</p>\n\n</section>\n\n \n \n <section class=\"class-overview\">\n<code-example language=\"ts\" hidecopy=\"true\">\nabstract class <a href=\"api/platform-browser/DomSanitizer\" class=\"code-anchor\">DomSanitizer</a> implements <a class=\"code-anchor\" href=\"api/core/Sanitizer\">Sanitizer</a> {\n <a class=\"code-anchor\" href=\"api/platform-browser/DomSanitizer#sanitize\">abstract <span class=\"member-name\">sanitize</span>(context: SecurityContext, value: string | SafeValue): string | null</a>\n <a class=\"code-anchor\" href=\"api/platform-browser/DomSanitizer#bypassSecurityTrustHtml\">abstract <span class=\"member-name\">bypassSecurityTrustHtml</span>(value: string): SafeHtml</a>\n <a class=\"code-anchor\" href=\"api/platform-browser/DomSanitizer#bypassSecurityTrustStyle\">abstract <span class=\"member-name\">bypassSecurityTrustStyle</span>(value: string): SafeStyle</a>\n <a class=\"code-anchor\" href=\"api/platform-browser/DomSanitizer#bypassSecurityTrustScript\">abstract <span class=\"member-name\">bypassSecurityTrustScript</span>(value: string): SafeScript</a>\n <a class=\"code-anchor\" href=\"api/platform-browser/DomSanitizer#bypassSecurityTrustUrl\">abstract <span class=\"member-name\">bypassSecurityTrustUrl</span>(value: string): SafeUrl</a>\n <a class=\"code-anchor\" href=\"api/platform-browser/DomSanitizer#bypassSecurityTrustResourceUrl\">abstract <span class=\"member-name\">bypassSecurityTrustResourceUrl</span>(value: string): SafeResourceUrl</a>\n}\n</code-example>\n\n \n \n\n</section>\n\n\n \n\n \n \n<section class=\"description\">\n <h2 id=\"description\">Description<a title=\"Link to this heading\" class=\"header-link\" aria-hidden=\"true\" href=\"api/platform-browser/DomSanitizer#description\"><i class=\"material-icons\">link</i></a></h2>\n <p>For example, when binding a URL in an <code>&#x3C;a [href]=\"someValue\"></code> hyperlink, <code>someValue</code> will be\nsanitized so that an attacker cannot inject e.g. a <code>javascript:</code> URL that would execute code on\nthe website.</p>\n<p>In specific situations, it might be necessary to disable sanitization, for example if the\napplication genuinely needs to produce a <code>javascript:</code> style link with a dynamic value in it.\nUsers can bypass security by constructing a value with one of the <code>bypassSecurityTrust...</code>\nmethods, and then binding to that value from the template.</p>\n<p>These situations should be very rare, and extraordinary care must be taken to avoid creating a\nCross Site Scripting (XSS) security bug!</p>\n<p>When using <code>bypassSecurityTrust...</code>, make sure to call the method as early as possible and as\nclose as possible to the source of the value, to make it easy to verify no security bug is\ncreated by its use.</p>\n<p>It is not required (and not recommended) to bypass security if the value is safe, e.g. a URL that\ndoes not start with a suspicious protocol, or an HTML snippet that does not contain dangerous\ncode. The sanitizer leaves safe values intact.</p>\n\n \n</section>\n\n \n\n\n\n\n\n\n\n\n\n\n\n\n<section class=\"instance-methods\">\n <h2 id=\"methods\">Methods<a title=\"Link to this heading\" class=\"header-link\" aria-hidden=\"true\" href=\"api/platform-browser/DomSanitizer#methods\"><i class=\"material-icons\">link</i></a></h2>\n \n <a id=\"sanitize\"></a>\n<table class=\"is-full-width method-table instance-method\">\n <thead><tr><th>\n <div class=\"with-github-links\">\n <h3 id=\"sanitize\">\n sanitize()\n \n <a title=\"Link to this heading\" class=\"header-link\" aria-hidden=\"true\" href=\"api/platform-browser/DomSanitizer#sanitize\"><i class=\"material-icons\">link</i></a></h3>\n <div class=\"github-links\">\n <a href=\"https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L91-L99\" aria-label=\"Suggest Edits\" title=\"Suggest Edits\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">mode_edit</i></a>\n <a href=\"https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L91-L99\" aria-label=\"View Source\" title=\"View Source\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">code</i></a>\n</div>\n </div>\n </th></tr></thead>\n <tbody>\n <tr>\n <td class=\"short-description\">\n <p>Sanitizes a value for use in the given SecurityContext.</p>\n\n </td>\n </tr>\n \n <tr>\n <td>\n <div class=\"overload-info\">\n \n\n <code-example language=\"ts\" hidecopy=\"true\" class=\"no-box api-heading\">abstract <span class=\"member-name\">sanitize</span>(context: SecurityContext, value: string | SafeValue): string | null</code-example>\n\n \n\n <h6 class=\"no-anchor\" id=\"parameters\">Parameters</h6>\n <table class=\"is-full-width list-table parameters-table instance-method-overload-parameters\">\n <tbody>\n \n <tr class=\"instance-method-overload-parameter\">\n <td class=\"param-name\">\n <a id=\"\"></a>\n <code>context</code>\n </td>\n <td class=\"param-type\"><code><a href=\"api/core/SecurityContext\" class=\"code-anchor\">SecurityContext</a></code></td>\n <td class=\"param-description\">\n \n \n </td>\n </tr>\n <tr class=\"instance-method-overload-parameter\">\n <td class=\"param-name\">\n <a id=\"\"></a>\n <code>value</code>\n </td>\n <td class=\"param-type\"><code>string | <a href=\"api/platform-browser/SafeValue\" class=\"code-anchor\">SafeValue</a></code></td>\n <td class=\"param-description\">\n \n \n </td>\n </tr>\n </tbody>\n</table>\n\n \n <h6 class=\"no-anchor\" id=\"returns\">Returns</h6>\n <p><code>string | null</code></p>\n\n \n\n\n \n\n \n</div>\n </td>\n </tr>\n \n\n <tr>\n <td class=\"description\">\n <p>If value is trusted for the context, this method will unwrap the contained safe value and use\nit directly. Otherwise, value will be sanitized to be safe in the given context, for example\nby replacing URLs that have an unsafe protocol part (such as <code>javascript:</code>). The implementation\nis responsible to make sure that the value can definitely be safely used in the given context.</p>\n\n </td>\n </tr>\n\n \n </tbody>\n</table>\n\n \n <a id=\"bypassSecurityTrustHtml\"></a>\n<table class=\"is-full-width method-table instance-method\">\n <thead><tr><th>\n <div class=\"with-github-links\">\n <h3 id=\"bypasssecuritytrusthtml\">\n bypassSecurityTrustHtml()\n \n <a title=\"Link to this heading\" class=\"header-link\" aria-hidden=\"true\" href=\"api/platform-browser/DomSanitizer#bypasssecuritytrusthtml\"><i class=\"material-icons\">link</i></a></h3>\n <div class=\"github-links\">\n <a href=\"https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L100-L109\" aria-label=\"Suggest Edits\" title=\"Suggest Edits\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">mode_edit</i></a>\n <a href=\"https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L100-L109\" aria-label=\"View Source\" title=\"View Source\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">code</i></a>\n</div>\n </div>\n </th></tr></thead>\n <tbody>\n <tr>\n <td class=\"short-description\">\n <p>Bypass security and trust the given value to be safe HTML. Only use this when the bound HTML\nis unsafe (e.g. contains <code>&#x3C;script></code> tags) and the code should be executed. The sanitizer will\nleave safe HTML intact, so in most situations this method should not be used.</p>\n\n </td>\n </tr>\n \n <tr>\n <td>\n <div class=\"overload-info\">\n \n\n <code-example language=\"ts\" hidecopy=\"true\" class=\"no-box api-heading\">abstract <span class=\"member-name\">bypassSecurityTrustHtml</span>(value: string): SafeHtml</code-example>\n\n \n\n <h6 class=\"no-anchor\" id=\"parameters-1\">Parameters</h6>\n <table class=\"is-full-width list-table parameters-table instance-method-overload-parameters\">\n <tbody>\n \n <tr class=\"instance-method-overload-parameter\">\n <td class=\"param-name\">\n <a id=\"\"></a>\n <code>value</code>\n </td>\n <td class=\"param-type\"><code>string</code></td>\n <td class=\"param-description\">\n \n \n </td>\n </tr>\n </tbody>\n</table>\n\n \n <h6 class=\"no-anchor\" id=\"returns-1\">Returns</h6>\n <p><code><a href=\"api/platform-browser/SafeHtml\" class=\"code-anchor\">SafeHtml</a></code></p>\n\n \n\n\n \n\n \n</div>\n </td>\n </tr>\n \n\n <tr>\n <td class=\"description\">\n <p><strong>WARNING:</strong> calling this method with untrusted user data exposes your application to XSS\nsecurity risks!</p>\n\n </td>\n </tr>\n\n \n </tbody>\n</table>\n\n \n <a id=\"bypassSecurityTrustStyle\"></a>\n<table class=\"is-full-width method-table instance-method\">\n <thead><tr><th>\n <div class=\"with-github-links\">\n <h3 id=\"bypasssecuritytruststyle\">\n bypassSecurityTrustStyle()\n \n <a title=\"Link to this heading\" class=\"header-link\" aria-hidden=\"true\" href=\"api/platform-browser/DomSanitizer#bypasssecuritytruststyle\"><i class=\"material-icons\">link</i></a></h3>\n <div class=\"github-links\">\n <a href=\"https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L110-L117\" aria-label=\"Suggest Edits\" title=\"Suggest Edits\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">mode_edit</i></a>\n <a href=\"https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L110-L117\" aria-label=\"View Source\" title=\"View Source\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">code</i></a>\n</div>\n </div>\n </th></tr></thead>\n <tbody>\n <tr>\n <td class=\"short-description\">\n <p>Bypass security and trust the given value to be safe style value (CSS).</p>\n\n </td>\n </tr>\n \n <tr>\n <td>\n <div class=\"overload-info\">\n \n\n <code-example language=\"ts\" hidecopy=\"true\" class=\"no-box api-heading\">abstract <span class=\"member-name\">bypassSecurityTrustStyle</span>(value: string): SafeStyle</code-example>\n\n \n\n <h6 class=\"no-anchor\" id=\"parameters-2\">Parameters</h6>\n <table class=\"is-full-width list-table parameters-table instance-method-overload-parameters\">\n <tbody>\n \n <tr class=\"instance-method-overload-parameter\">\n <td class=\"param-name\">\n <a id=\"\"></a>\n <code>value</code>\n </td>\n <td class=\"param-type\"><code>string</code></td>\n <td class=\"param-description\">\n \n \n </td>\n </tr>\n </tbody>\n</table>\n\n \n <h6 class=\"no-anchor\" id=\"returns-2\">Returns</h6>\n <p><code><a href=\"api/platform-browser/SafeStyle\" class=\"code-anchor\">SafeStyle</a></code></p>\n\n \n\n\n \n\n \n</div>\n </td>\n </tr>\n \n\n <tr>\n <td class=\"description\">\n <p><strong>WARNING:</strong> calling this method with untrusted user data exposes your application to XSS\nsecurity risks!</p>\n\n </td>\n </tr>\n\n \n </tbody>\n</table>\n\n \n <a id=\"bypassSecurityTrustScript\"></a>\n<table class=\"is-full-width method-table instance-method\">\n <thead><tr><th>\n <div class=\"with-github-links\">\n <h3 id=\"bypasssecuritytrustscript\">\n bypassSecurityTrustScript()\n \n <a title=\"Link to this heading\" class=\"header-link\" aria-hidden=\"true\" href=\"api/platform-browser/DomSanitizer#bypasssecuritytrustscript\"><i class=\"material-icons\">link</i></a></h3>\n <div class=\"github-links\">\n <a href=\"https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L118-L125\" aria-label=\"Suggest Edits\" title=\"Suggest Edits\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">mode_edit</i></a>\n <a href=\"https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L118-L125\" aria-label=\"View Source\" title=\"View Source\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">code</i></a>\n</div>\n </div>\n </th></tr></thead>\n <tbody>\n <tr>\n <td class=\"short-description\">\n <p>Bypass security and trust the given value to be safe JavaScript.</p>\n\n </td>\n </tr>\n \n <tr>\n <td>\n <div class=\"overload-info\">\n \n\n <code-example language=\"ts\" hidecopy=\"true\" class=\"no-box api-heading\">abstract <span class=\"member-name\">bypassSecurityTrustScript</span>(value: string): SafeScript</code-example>\n\n \n\n <h6 class=\"no-anchor\" id=\"parameters-3\">Parameters</h6>\n <table class=\"is-full-width list-table parameters-table instance-method-overload-parameters\">\n <tbody>\n \n <tr class=\"instance-method-overload-parameter\">\n <td class=\"param-name\">\n <a id=\"\"></a>\n <code>value</code>\n </td>\n <td class=\"param-type\"><code>string</code></td>\n <td class=\"param-description\">\n \n \n </td>\n </tr>\n </tbody>\n</table>\n\n \n <h6 class=\"no-anchor\" id=\"returns-3\">Returns</h6>\n <p><code><a href=\"api/platform-browser/SafeScript\" class=\"code-anchor\">SafeScript</a></code></p>\n\n \n\n\n \n\n \n</div>\n </td>\n </tr>\n \n\n <tr>\n <td class=\"description\">\n <p><strong>WARNING:</strong> calling this method with untrusted user data exposes your application to XSS\nsecurity risks!</p>\n\n </td>\n </tr>\n\n \n </tbody>\n</table>\n\n \n <a id=\"bypassSecurityTrustUrl\"></a>\n<table class=\"is-full-width method-table instance-method\">\n <thead><tr><th>\n <div class=\"with-github-links\">\n <h3 id=\"bypasssecuritytrusturl\">\n bypassSecurityTrustUrl()\n \n <a title=\"Link to this heading\" class=\"header-link\" aria-hidden=\"true\" href=\"api/platform-browser/DomSanitizer#bypasssecuritytrusturl\"><i class=\"material-icons\">link</i></a></h3>\n <div class=\"github-links\">\n <a href=\"https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L126-L134\" aria-label=\"Suggest Edits\" title=\"Suggest Edits\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">mode_edit</i></a>\n <a href=\"https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L126-L134\" aria-label=\"View Source\" title=\"View Source\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">code</i></a>\n</div>\n </div>\n </th></tr></thead>\n <tbody>\n <tr>\n <td class=\"short-description\">\n <p>Bypass security and trust the given value to be a safe style URL, i.e. a value that can be used\nin hyperlinks or <code>&#x3C;img src></code>.</p>\n\n </td>\n </tr>\n \n <tr>\n <td>\n <div class=\"overload-info\">\n \n\n <code-example language=\"ts\" hidecopy=\"true\" class=\"no-box api-heading\">abstract <span class=\"member-name\">bypassSecurityTrustUrl</span>(value: string): SafeUrl</code-example>\n\n \n\n <h6 class=\"no-anchor\" id=\"parameters-4\">Parameters</h6>\n <table class=\"is-full-width list-table parameters-table instance-method-overload-parameters\">\n <tbody>\n \n <tr class=\"instance-method-overload-parameter\">\n <td class=\"param-name\">\n <a id=\"\"></a>\n <code>value</code>\n </td>\n <td class=\"param-type\"><code>string</code></td>\n <td class=\"param-description\">\n \n \n </td>\n </tr>\n </tbody>\n</table>\n\n \n <h6 class=\"no-anchor\" id=\"returns-4\">Returns</h6>\n <p><code><a href=\"api/platform-browser/SafeUrl\" class=\"code-anchor\">SafeUrl</a></code></p>\n\n \n\n\n \n\n \n</div>\n </td>\n </tr>\n \n\n <tr>\n <td class=\"description\">\n <p><strong>WARNING:</strong> calling this method with untrusted user data exposes your application to XSS\nsecurity risks!</p>\n\n </td>\n </tr>\n\n \n </tbody>\n</table>\n\n \n <a id=\"bypassSecurityTrustResourceUrl\"></a>\n<table class=\"is-full-width method-table instance-method\">\n <thead><tr><th>\n <div class=\"with-github-links\">\n <h3 id=\"bypasssecuritytrustresourceurl\">\n bypassSecurityTrustResourceUrl()\n \n <a title=\"Link to this heading\" class=\"header-link\" aria-hidden=\"true\" href=\"api/platform-browser/DomSanitizer#bypasssecuritytrustresourceurl\"><i class=\"material-icons\">link</i></a></h3>\n <div class=\"github-links\">\n <a href=\"https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L135-L143\" aria-label=\"Suggest Edits\" title=\"Suggest Edits\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">mode_edit</i></a>\n <a href=\"https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L135-L143\" aria-label=\"View Source\" title=\"View Source\"><i class=\"material-icons\" aria-hidden=\"true\" role=\"img\">code</i></a>\n</div>\n </div>\n </th></tr></thead>\n <tbody>\n <tr>\n <td class=\"short-description\">\n <p>Bypass security and trust the given value to be a safe resource URL, i.e. a location that may\nbe used to load executable code from, like <code>&#x3C;script src></code>, or <code>&#x3C;iframe src></code>.</p>\n\n </td>\n </tr>\n \n <tr>\n <td>\n <div class=\"overload-info\">\n \n\n <code-example language=\"ts\" hidecopy=\"true\" class=\"no-box api-heading\">abstract <span class=\"member-name\">bypassSecurityTrustResourceUrl</span>(value: string): SafeResourceUrl</code-example>\n\n \n\n <h6 class=\"no-anchor\" id=\"parameters-5\">Parameters</h6>\n <table class=\"is-full-width list-table parameters-table instance-method-overload-parameters\">\n <tbody>\n \n <tr class=\"instance-method-overload-parameter\">\n <td class=\"param-name\">\n <a id=\"\"></a>\n <code>value</code>\n </td>\n <td class=\"param-type\"><code>string</code></td>\n <td class=\"param-description\">\n \n \n </td>\n </tr>\n </tbody>\n</table>\n\n \n <h6 class=\"no-anchor\" id=\"returns-5\">Returns</h6>\n <p><code><a href=\"api/platform-browser/SafeResourceUrl\" class=\"code-anchor\">SafeResourceUrl</a></code></p>\n\n \n\n\n \n\n \n</div>\n </td>\n </tr>\n \n\n <tr>\n <td class=\"description\">\n <p><strong>WARNING:</strong> calling this method with untrusted user data exposes your application to XSS\nsecurity risks!</p>\n\n </td>\n </tr>\n\n \n </tbody>\n</table>\n\n \n</section>\n\n\n\n \n\n\n </div>\n</article>\n\n<!-- links to this doc:\n - api/core/Sanitizer\n - api/platform-browser\n - guide/security\n-->\n<!-- links from this doc:\n - /api\n - api/core/Sanitizer\n - api/core/SecurityContext\n - api/platform-browser\n - api/platform-browser/DomSanitizer#bypassSecurityTrustHtml\n - api/platform-browser/DomSanitizer#bypassSecurityTrustResourceUrl\n - api/platform-browser/DomSanitizer#bypassSecurityTrustScript\n - api/platform-browser/DomSanitizer#bypassSecurityTrustStyle\n - api/platform-browser/DomSanitizer#bypassSecurityTrustUrl\n - api/platform-browser/DomSanitizer#bypasssecuritytrusthtml\n - api/platform-browser/DomSanitizer#bypasssecuritytrustresourceurl\n - api/platform-browser/DomSanitizer#bypasssecuritytrustscript\n - api/platform-browser/DomSanitizer#bypasssecuritytruststyle\n - api/platform-browser/DomSanitizer#bypasssecuritytrusturl\n - api/platform-browser/DomSanitizer#description\n - api/platform-browser/DomSanitizer#domsanitizer\n - api/platform-browser/DomSanitizer#methods\n - api/platform-browser/DomSanitizer#sanitize\n - api/platform-browser/DomSanitizer#security-risk\n - api/platform-browser/SafeHtml\n - api/platform-browser/SafeResourceUrl\n - api/platform-browser/SafeScript\n - api/platform-browser/SafeStyle\n - api/platform-browser/SafeUrl\n - api/platform-browser/SafeValue\n - https://g.co/ng/security\n - https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L100-L109\n - https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L110-L117\n - https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L118-L125\n - https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L126-L134\n - https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L135-L143\n - https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L57-L144\n - https://github.com/angular/angular/edit/master/packages/platform-browser/src/security/dom_sanitization_service.ts?message=docs(platform-browser)%3A%20describe%20your%20change...#L91-L99\n - https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L100-L109\n - https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L110-L117\n - https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L118-L125\n - https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L126-L134\n - https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L135-L143\n - https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L57-L144\n - https://github.com/angular/angular/tree/12.0.0-next.7/packages/platform-browser/src/security/dom_sanitization_service.ts#L91-L99\n-->"
}
Reference in New Issue View Git Blame Copy Permalink