UNPKG

payu-websdk

Version:

PayU WEB SDK for nodejs

github.com/payu-intrepos/web-sdk-nodejs

payu-intrepos/web-sdk-nodejs

56 lines (48 loc) 1.4 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
/** * HTML Encoder utility to prevent XSS attacks * Encodes special HTML characters to their entity equivalents */ /** * Encodes HTML special characters * @param {string} str - String to encode * @returns {string} - HTML encoded string */ function encodeHTML(str) { if (str === null || str === undefined) return ''; return String(str) .replace(/&/g, '&amp;') .replace(/</g, '&lt;') .replace(/>/g, '&gt;') .replace(/"/g, '&quot;') .replace(/'/g, '&#39;') .replace(/\//g, '&#x2F;'); } /** * Encodes HTML attributes * @param {string} str - String to encode for attribute * @returns {string} - HTML attribute encoded string */ function encodeHTMLAttribute(str) { if (str === null || str === undefined) return ''; return String(str) .replace(/&/g, '&amp;') .replace(/"/g, '&quot;') .replace(/'/g, '&#39;') .replace(/</g, '&lt;') .replace(/>/g, '&gt;'); } /** * Safely encodes JSON for HTML context * @param {object} obj - Object to encode as JSON * @returns {string} - Safely encoded JSON string */ function encodeJSONForHTML(obj) { if (obj === null || obj === undefined) return ''; const jsonString = JSON.stringify(obj); return encodeHTMLAttribute(jsonString); } module.exports = { encodeHTML, encodeHTMLAttribute, encodeJSONForHTML };