javascript Angular.js aHrefSanitizationWhitelist 不起作用?
声明:本页面是StackOverFlow热门问题的中英对照翻译,遵循CC BY-SA 4.0协议,如果您需要使用它,必须同样遵循CC BY-SA许可,注明原文地址和作者信息,同时你必须将它归于原作者(不是我):StackOverFlow
原文地址: http://stackoverflow.com/questions/27968714/
Warning: these are provided under cc-by-sa 4.0 license. You are free to use/share it, But you must attribute it to the original authors (not me):
StackOverFlow
Angular.js aHrefSanitizationWhitelist not working?
提问by GavinoGrifoni
I'm experimenting a little bit with the basic Angular.js tutorial, but I'm having trouble trying to set up the url-schema's whitelist.
我正在尝试使用基本的 Angular.js 教程,但在尝试设置 url-schema 的白名单时遇到了问题。
Basically I'm trying to add a custom scheme (cust-scheme) to the whitelist of angular, in order to avoid it from prefixing urls with unsafe:.
基本上,我试图将自定义方案(cust-scheme)添加到 angular 的白名单中,以避免它在 url 前加上unsafe:.
According to thisStackOverflow's answer, I just need to add $compileProvider.aHrefSanitizationWhitelist(/^\s*(https?|cust-scheme):/);to the config parameters of the app.
根据这个StackOverflow 的回答,我只需要添加$compileProvider.aHrefSanitizationWhitelist(/^\s*(https?|cust-scheme):/);到应用程序的配置参数中。
I tried the following:
我尝试了以下方法:
'use strict';
/* App Module */
var phonecatApp = angular.module('phonecatApp', [
'ngRoute',
'ngSanitize',
'phonecatAnimations',
'phonecatControllers',
'phonecatFilters',
'phonecatServices'
]);
phonecatApp.config(['$routeProvider',
function($routeProvider) {
$routeProvider.
when('/phones', {
templateUrl: 'partials/phone-list.html',
controller: 'PhoneListCtrl'
}).
when('/phones/:phoneId', {
templateUrl: 'partials/phone-detail.html',
controller: 'PhoneDetailCtrl'
}).
otherwise({
redirectTo: '/phones'
});
}],
['$compileProvider',
function( $compileProvider ) {
$compileProvider.aHrefSanitizationWhitelist(/^\s*(https?|cust-scheme):/);
$compileProvider.imgSrcSanitizationWhitelist(/^\s*(https?|cust-scheme):/);
}
]);
but it doesn't work. The routing is fine but the cust-schemeschema is not whitelisted. Is there anything I'm missing? Perhaps I'm doing the multiple configurations thing wrong?
但它不起作用。路由很好,但cust-scheme架构没有列入白名单。有什么我想念的吗?也许我做错了多种配置?
I also tried the following:
我还尝试了以下方法:
'use strict';
/* App Module */
var phonecatApp = angular.module('phonecatApp', [
'ngRoute',
'ngSanitize',
'phonecatAnimations',
'phonecatControllers',
'phonecatFilters',
'phonecatServices'
]);
phonecatApp.config(['$routeProvider',
function($routeProvider) {
$routeProvider.
when('/phones', {
templateUrl: 'partials/phone-list.html',
controller: 'PhoneListCtrl'
}).
when('/phones/:phoneId', {
templateUrl: 'partials/phone-detail.html',
controller: 'PhoneDetailCtrl'
}).
otherwise({
redirectTo: '/phones'
});
}]
);
phonecatApp.config(function( $compileProvider ) {
$compileProvider.aHrefSanitizationWhitelist(/^\s*(https?|cust-scheme):/);
$compileProvider.imgSrcSanitizationWhitelist(/^\s*(https?|cust-scheme):/);
}
);
In this second case, the schema was whitelisted but the routing didn't work anymore.
在第二种情况下,模式被列入白名单,但路由不再起作用。
Any help is appreciated!
任何帮助表示赞赏!
Yours sincerly, an Angular.js newbie :)
真诚的,Angular.js 新手 :)
回答by scniro
Looks like you are just a bit off syntactically, so lets try to "merge" these two code snippets together. Hopefully this code is self describing and you can see that we are injecting $routeProviderand $compileProvidertogether in a min-safe and verbose way to call our app .configat once
看起来您在语法上有点偏离,所以让我们尝试将这两个代码片段“合并”在一起。希望这个代码是自描述,你可以看到,我们正在注入$routeProvider和$compileProvider在闽安全和冗长的方式共同致电我们的应用程序.config一次
phonecatApp.config(['$routeProvider', '$compileProvider', function($routeProvider, $compileProvider) {
$compileProvider.aHrefSanitizationWhitelist(/^\s*(https?|ftp|mailto|chrome-extension):/);
$compileProvider.imgSrcSanitizationWhitelist(/^\s*(https?|ftp|mailto|chrome-extension):/);
$routeProvider.
when('/phones', {
templateUrl: 'partials/phone-list.html',
controller: 'PhoneListCtrl'
}).
when('/phones/:phoneId', {
templateUrl: 'partials/phone-detail.html',
controller: 'PhoneDetailCtrl'
}).
otherwise({
redirectTo: '/phones'
});
}]);
