UNPKG

@gitlab/ui

Version:

GitLab UI Components

gitlab.com/gitlab-org/gitlab-ui

51 lines (49 loc) 1.46 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
import { withKnobs, text } from '@storybook/addon-knobs'; import { sanitize } from 'dompurify'; import { escape } from 'lodash'; import { documentedStoriesOf } from '../../../documentation/documented_stories'; import { GlSafeHtmlDirective } from '../../../index'; import readme from './safe_html.md'; documentedStoriesOf('directives/safe-html-directive', readme) .addDecorator(withKnobs) .addParameters({ storyshots: false, knobs: { escapeHTML: false } }) .add('default', () => ({ directives: { 'gl-safe-html': GlSafeHtmlDirective, }, props: { unsafeHTML: { type: String, default: text('Unsafe HTML', '<a href="javascript:alert(document.domain)">Click me</a>'), }, }, computed: { sanitizedHtml() { return sanitize(this.unsafeHTML); }, }, escape, template: ` <table class="gl-table"> <thead> <tr> <th>Directive</th> <th>Output</th> <th>Rendered</th> </tr> </thead> <tbody> <tr> <td><strong>v-html</strong></td> <td><code v-html="$options.escape(unsafeHTML)"></code></td> <td>N/A for security reasons</td> </tr> <tr> <td><strong>v-safe-html</strong></td> <td><code v-html="$options.escape(sanitizedHtml)"></code></td> <td v-gl-safe-html="unsafeHTML"></td> </tr> </tbody> </table> `, }));