From 0f3b028ed61c5c26309d5f8d49fa4bb09460077c Mon Sep 17 00:00:00 2001 From: Wu Cheng-Han Date: Wed, 22 Mar 2017 18:26:30 +0800 Subject: [PATCH] Fix render.js code styles --- public/js/render.js | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/public/js/render.js b/public/js/render.js index 61663a4..746820a 100644 --- a/public/js/render.js +++ b/public/js/render.js @@ -26,30 +26,30 @@ var filterXSSOptions = { allowCommentTag: true, whiteList: whiteList, escapeHtml: function (html) { - // allow html comment in multiple lines + // allow html comment in multiple lines return html.replace(/<(.*?)>/g, '<$1>') }, onIgnoreTag: function (tag, html, options) { - // allow comment tag + // allow comment tag if (tag === '!--') { // do not filter its attributes return html } }, onTagAttr: function (tag, name, value, isWhiteAttr) { - // allow href and src that match linkRegex + // allow href and src that match linkRegex if (isWhiteAttr && (name === 'href' || name === 'src') && linkRegex.test(value)) { return name + '="' + filterXSS.escapeAttrValue(value) + '"' } - // allow data uri in img src + // allow data uri in img src if (isWhiteAttr && (tag === 'img' && name === 'src') && dataUriRegex.test(value)) { return name + '="' + filterXSS.escapeAttrValue(value) + '"' } }, onIgnoreTagAttr: function (tag, name, value, isWhiteAttr) { - // allow attr start with 'data-' or in the whiteListAttr + // allow attr start with 'data-' or in the whiteListAttr if (name.substr(0, 5) === 'data-' || window.whiteListAttr.indexOf(name) !== -1) { - // escape its value using built-in escapeAttrValue function + // escape its value using built-in escapeAttrValue function return name + '="' + filterXSS.escapeAttrValue(value) + '"' } }