import { Injectable } from '@angular/core'
+import { getCustomMarkupSanitizeOptions, getDefaultSanitizeOptions } from '@shared/core-utils/renderer/html'
import { LinkifierService } from './linkifier.service'
@Injectable()
})
}
- async toSafeHtml (text: string) {
- await this.loadSanitizeHtml()
+ async toSafeHtml (text: string, additionalAllowedTags: string[] = []) {
+ const [ html ] = await Promise.all([
+ // Convert possible markdown to html
+ this.linkifier.linkify(text),
- // Convert possible markdown to html
- const html = this.linkifier.linkify(text)
+ this.loadSanitizeHtml()
+ ])
- return this.sanitizeHtml(html, {
- allowedTags: [ 'a', 'p', 'span', 'br', 'strong', 'em', 'ul', 'ol', 'li' ],
- allowedSchemes: [ 'http', 'https' ],
- allowedAttributes: {
- 'a': [ 'href', 'class', 'target', 'rel' ]
- },
- transformTags: {
- a: (tagName, attribs) => {
- let rel = 'noopener noreferrer'
- if (attribs.rel === 'me') rel += ' me'
-
- return {
- tagName,
- attribs: Object.assign(attribs, {
- target: '_blank',
- rel
- })
- }
- }
- }
- })
+ const options = additionalAllowedTags.length !== 0
+ ? getCustomMarkupSanitizeOptions(additionalAllowedTags)
+ : getDefaultSanitizeOptions()
+
+ return this.sanitizeHtml(html, options)
}
private async loadSanitizeHtml () {
projects / github / Chocobozzz / PeerTube.git / blobdiff