UNPKG

closure-builder

Version:

Simple Closure, Soy and JavaScript Build system

github.com/Google/closure-builder

Google/closure-builder

62 lines (57 loc) 2.38 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
// Copyright 2017 The Closure Library Authors. All Rights Reserved. // // Licensed under the Apache License, Version 2.0 (the "License"); // you may not use this file except in compliance with the License. // You may obtain a copy of the License at // // http://www.apache.org/licenses/LICENSE-2.0 // // Unless required by applicable law or agreed to in writing, software // distributed under the License is distributed on an "AS-IS" BASIS, // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. // See the License for the specific language governing permissions and // limitations under the License. goog.module('goog.dom.uri'); const Const = goog.require('goog.string.Const'); const TagName = goog.require('goog.dom.TagName'); const uncheckedconversions = goog.require('goog.html.uncheckedconversions'); const {createElement} = goog.require('goog.dom'); const {setAnchorHref} = goog.require('goog.dom.safe'); /** * Normalizes a URL by assigning it to an anchor element and reading back href. * * This converts relative URLs to absolute, and cleans up whitespace. * @param {string} uri A string containing a URI. * @return {string} Normalized, absolute form of uri. */ function normalizeUri(uri) { const anchor = createElement(TagName.A); // This is safe even though the URL might be untrustworthy. // The SafeURL is only used to set the href of an HTMLAnchorElement // that is never added to the DOM. Therefore, the user cannot navigate // to this URL. const safeUrl = uncheckedconversions.safeUrlFromStringKnownToSatisfyTypeContract( Const.from('This URL is never added to the DOM'), uri); setAnchorHref(anchor, safeUrl); return anchor.href; } exports.normalizeUri = normalizeUri; /** * Gets the href property of an anchor element, suppressing exceptions coming * from certain URLs in IE. * @param {!HTMLAnchorElement} element * @return {?string} * @deprecated This format is deprecated in RFC 3986. Use this function only for * legacy behavior, and avoid accepting such URLs in new code. */ function getHref(element) { try { return element.href || null; } catch (x) { // IE throws a security exception for urls including username/password: // http://user:password@example.com/ return null; } } exports.getHref = getHref;