BUGFIX: HTML output which is then converted to a regular string (for a standard operation) still contained escaped HTML chars.

2025-04-21 23:36:16 -04:00 · 2017-03-01 21:33:28 +00:00 · 2017-03-01 21:33:28 +00:00 · fc9c2d1f6e
commit fc9c2d1f6e
parent 70603be5ab
3 changed files with 52 additions and 1 deletions
--- a/src/js/core/Dish.js
+++ b/src/js/core/Dish.js
@ -139,7 +139,7 @@ Dish.prototype.translate = function(toType) {
            this.type = Dish.BYTE_ARRAY;
            break;
        case Dish.HTML:
-            this.value = this.value ? Utils.strToByteArray(Utils.stripHtmlTags(this.value, true)) : [];
+            this.value = this.value ? Utils.strToByteArray(Utils.unescapeHtml(Utils.stripHtmlTags(this.value, true))) : [];
            this.type = Dish.BYTE_ARRAY;
            break;
        default:
--- a/src/js/core/Utils.js
+++ b/src/js/core/Utils.js
@ -928,6 +928,33 @@ var Utils = {
    },


+    /**
+     * Unescapes HTML tags in a string to make them render again.
+     *
+     * @param {string} str
+     * @returns string
+     *
+     * @example
+     * // return "A <script> tag"
+     * Utils.unescapeHtml("A &lt;script&gt; tag");
+     */
+    unescapeHtml: function(str) {
+        var HTML_CHARS = {
+            "&amp;":  "&",
+            "&lt;":   "<",
+            "&gt;":   ">",
+            "&quot;": '"',
+            "&#x27;": "'",
+            "&#x2F;": "/",
+            "&#x60;": "`"
+        };
+
+        return str.replace(/&#?x?[a-z0-9]{2,4};/ig, function (match) {
+            return HTML_CHARS[match] || match;
+        });
+    },
+
+
    /**
     * Expresses a number of milliseconds in a human readable format.
     *