angularjs unsafe ng-href using javascript: void(0);

Question

I have a similar question to this post.

But adding "javascript" what was proposed in the answer didn't resolve my problem:

$compileProvider.urlSanitizationWhitelist(/^\s*(https?|ftp|mailto|file|javascript):/);

My code looks something like:

<a ng-href="{{var1 ? '/home' : 'javascript: void(0);'}}" ng-bind="var2"></a>

But in the url, it produces an unsafe:javascript: void(0);

Is this problem associated with a specific browser and what version of AngularJS are you using? — John P, Oct 02 '13 at 05:01

score 41 · Answer 1 · answered Oct 02 '13 at 04:22

I assume you use the latest version of AngularJS. The method name has been changed since that SO answer.

myapp.config(function($compileProvider){
  $compileProvider.aHrefSanitizationWhitelist(/^\s*(https?|ftp|mailto|file|javascript):/);
});

score 3 · Accepted Answer · answered Oct 02 '13 at 01:04

3

There must be some error in your code then. You can see it working just fine in this plunker:

answered Oct 02 '13 at 01:04

Juliane Holzt

2 Answers2