phpjs
Version:
134 lines (117 loc) • 4.34 kB
Markdown
layout: page
title: "JavaScript htmlspecialchars function"
comments: true
sharing: true
footer: true
alias:
- /functions/view/htmlspecialchars:426
- /functions/view/htmlspecialchars
- /functions/view/426
- /functions/htmlspecialchars:426
- /functions/426
<!-- Generated by Rakefile:build -->
A JavaScript equivalent of PHP's htmlspecialchars
{% codeblock strings/htmlspecialchars.js lang:js https://raw.github.com/kvz/phpjs/master/functions/strings/htmlspecialchars.js raw on github %}
function htmlspecialchars (string, quote_style, charset, double_encode) {
// From: http://phpjs.org/functions
// + original by: Mirek Slugen
// + improved by: Kevin van Zonneveld (http://kevin.vanzonneveld.net)
// + bugfixed by: Nathan
// + bugfixed by: Arno
// + revised by: Kevin van Zonneveld (http://kevin.vanzonneveld.net)
// + bugfixed by: Brett Zamir (http://brett-zamir.me)
// + input by: Ratheous
// + input by: Mailfaker (http://www.weedem.fr/)
// + reimplemented by: Brett Zamir (http://brett-zamir.me)
// + input by: felix
// + bugfixed by: Brett Zamir (http://brett-zamir.me)
// % note 1: charset argument not supported
// * example 1: htmlspecialchars("<a href='test'>Test</a>", 'ENT_QUOTES');
// * returns 1: '<a href='test'>Test</a>'
// * example 2: htmlspecialchars("ab\"c'd", ['ENT_NOQUOTES', 'ENT_QUOTES']);
// * returns 2: 'ab"c'd'
// * example 3: htmlspecialchars('my "&entity;" is still here', null, null, false);
// * returns 3: 'my "&entity;" is still here'
var optTemp = 0,
i = 0,
noquotes = false;
if (typeof quote_style === 'undefined' || quote_style === null) {
quote_style = 2;
}
string = string.toString();
if (double_encode !== false) { // Put this first to avoid double-encoding
string = string.replace(/&/g, '&');
}
string = string.replace(/</g, '<').replace(/>/g, '>');
var OPTS = {
'ENT_NOQUOTES': 0,
'ENT_HTML_QUOTE_SINGLE': 1,
'ENT_HTML_QUOTE_DOUBLE': 2,
'ENT_COMPAT': 2,
'ENT_QUOTES': 3,
'ENT_IGNORE': 4
};
if (quote_style === 0) {
noquotes = true;
}
if (typeof quote_style !== 'number') { // Allow for a single string or an array of string flags
quote_style = [].concat(quote_style);
for (i = 0; i < quote_style.length; i++) {
// Resolve string input to bitwise e.g. 'ENT_IGNORE' becomes 4
if (OPTS[quote_style[i]] === 0) {
noquotes = true;
}
else if (OPTS[quote_style[i]]) {
optTemp = optTemp | OPTS[quote_style[i]];
}
}
quote_style = optTemp;
}
if (quote_style & OPTS.ENT_HTML_QUOTE_SINGLE) {
string = string.replace(/'/g, ''');
}
if (!noquotes) {
string = string.replace(/"/g, '"');
}
return string;
}
{% endcodeblock %}
- [Raw function on GitHub](https://github.com/kvz/phpjs/blob/master/functions/strings/htmlspecialchars.js)
Please note that php.js uses JavaScript objects as substitutes for PHP arrays, they are
the closest match to this hashtable-like data structure.
Please also note that php.js offers community built functions and goes by the
[McDonald's Theory](https://medium.com/what-i-learned-building/9216e1c9da7d). We'll put online
functions that are far from perfect, in the hopes to spark better contributions.
Do you have one? Then please just:
- [Edit on GitHub](https://github.com/kvz/phpjs/edit/master/functions/strings/htmlspecialchars.js)
### Example 1
This code
{% codeblock lang:js example %}
htmlspecialchars("<a href='test'>Test</a>", 'ENT_QUOTES');
{% endcodeblock %}
Should return
{% codeblock lang:js returns %}
'<a href='test'>Test</a>'
{% endcodeblock %}
### Example 2
This code
{% codeblock lang:js example %}
htmlspecialchars("ab\"c'd", ['ENT_NOQUOTES', 'ENT_QUOTES']);
{% endcodeblock %}
Should return
{% codeblock lang:js returns %}
'ab"c'd'
{% endcodeblock %}
### Example 3
This code
{% codeblock lang:js example %}
htmlspecialchars('my "&entity;" is still here', null, null, false);
{% endcodeblock %}
Should return
{% codeblock lang:js returns %}
'my "&entity;" is still here'
{% endcodeblock %}
### Other PHP functions in the strings extension
{% render_partial _includes/custom/strings.html %}