phoenix/hugo
1
0
Fork 0
mirror of https://github.com/gohugoio/hugo.git synced 2024-07-07 17:46:05 +00:00
Code Issues Packages Projects Releases Wiki Activity
hugo/docs/content/en/functions/safeHTMLAttr.md
Bjørn Erik Pedersen f04cc581e1
Merge commit '00c4484c7092181729f6f470805bc7d72e8ad17b'
2022-11-17 16:16:19 +01:00

1 KiB
Raw Blame History

title description categories menu keywords signature relatedfuncs aliases
safeHTMLAttr Declares the provided string as a safe HTML attribute.
functions
docs
parent
functions
strings
safeHTMLAttr INPUT

Given a site configuration that contains this menu entry:

{{< code-toggle file="config" >}} menu.main name = "IRC" url = "irc://irc.freenode.net/#golang" {{< /code-toggle >}}

Attempting to use the url value directly in an attribute:

{{ range site.Menus.main }}
  <a href="{{ .URL }}">{{ .Name }}</a>
{{ end }}

Will produce:

<a href="#ZgotmplZ">IRC</a>

ZgotmplZ is a special value, inserted by Go's template/html package, that indicates that unsafe content reached a CSS or URL context.

To override the safety check, use the safeHTMLAttr function:

{{ range site.Menus.main }}
  <a {{ printf "href=%q" .URL | safeHTMLAttr }}>{{ .Name }}</a>
{{ end }}