Questions tagged [html-safe]

75 questions

votes

7 answers

How to remove HTML markup from string

Let's say I have: @string = "it is a string" I want to use it in different parts of my application in two ways: With a clickable link Without the clickable link (but not showing any HTML markup) The first one can be done using…

ruby-on-rails ruby-on-rails-3 html-safe

asked Mar 06 '13 at 15:45

gabrielhilal

10,660
6
54
81

votes

1 answer

Ruby on Rails: difference between .html_safe and sanitize()

I have two pieces of code in my view: <%= sanitize('

winter

') %> <%= '

winter

'.html_safe %> And they both seem to result in encoding html tags in a string provided. What is the difference between them and when should I use either?

ruby-on-rails-4 sanitize difference html-safe

asked May 14 '14 at 16:11

Evgenia Karunus

10,715
5
56
70

votes

3 answers

Rendering partial in bootstrap popover rails 5 app?

I'm having a problem rendering a partial in a bootstrap popover in my rails app. The partial is always rendered as a plain text( showing all the HTML tags etc). this is the code from the index.html.erb

votes

2 answers

Using simple_format and html_safe at the same time in Rails

In the @post.content, I want 1.simple_format, so content would have different lines rather than in a single line without breaks 2.html_safe, so user could paste some

video link like youtubes It's OK to use <%= simple_format @post.content %>…

ruby-on-rails html-safe

asked Apr 23 '13 at 11:55

ZK Zhao

19,885
47
132
206

votes

3 answers

Forcing HTML Escaping in Rails 3

I'm running into an issue with the rails auto-escaping. It currently thinks a string is html_safe (which it is), but for display purposes I need it to still escape the html. Here's the steps the string is taking. my_string = render(:partial =>…

ruby-on-rails-3 escaping html-safe

asked Jun 05 '12 at 17:47

Jason Logsdon

votes

4 answers

Rails 3: Using HTML in i18n form helper translations

I am using the automatic form label helper for creating my form labels and having them translated via the i18n support, however, I want to have HTML in the label and I can't figure out how to make it HTML safe. For example: en: helpers: …

ruby-on-rails internationalization html-safe

asked Dec 07 '10 at 01:44

Jeremy Baker

3,986
3
24
27

votes

2 answers

Why in Rails 3, <%= note.html_safe %> and <%= h note.html_safe %> give the same result?

It feels like html_safe adds an abstraction to the String class that requires understanding of what is going on, for example, <%= '1 2' %> # gives 1 <b>2</b> in the HTML source code <%= h '1 2' %> # exactly the…

ruby-on-rails ruby-on-rails-3 xss html-escape html-safe

asked Nov 01 '10 at 15:22

nonopolarity

146,324
131
460
740

votes

1 answer

Rails 4 raw html_safe not working

I am not able to escape raw html tags in the view <% array = @article.tags.collect { |p| (link_to p.name, '#') } %> <%= array.join(' , ') %> Raw and html_safe <% array = @article.tags.collect { |p| raw (link_to p.name, '#') } %> <% array = …

ruby-on-rails ruby-on-rails-4 html-safe

asked Apr 25 '13 at 14:35

Ashwin Yaprala

2,737
2
24
56

votes

3 answers

How to make rails 3 I18n translation automatically safe?

I use rails 3. Is there any easy way to tell I18n to respect 'html safness' of string used in interpolation and make all translated string html safe by default? So if I have this en.yml: en: user_with_name: 'User with name %{name}' and I…

ruby-on-rails-3 internationalization automation html-safe

asked Mar 31 '11 at 15:17

tig

25,841
10
64
96

votes

1 answer

Is safe for sanitize?

I am using a rich text editor (CKEditor) and I have the opportunity to let users create profiles that are displayed to other users. Many of the attributes CKEditor can control are being lost when I display them as: <%= sanitize(profile.body) %> My…

ruby-on-rails ruby-on-rails-3 sanitize html-safe

asked Mar 20 '11 at 21:29

sscirrus

55,407
41
135
228

votes

4 answers

Parsing newline characters in textareas without allowing all html tags

I have a textarea field where users can enter content. When it comes to displaying their entry on a page, rails returns \n for each line break, which appears as no break at all for html on the page. From what I gather, the standard way of getting…

ruby-on-rails escaping html-safe

asked Nov 23 '10 at 07:23

PlankTon

12,443
16
84
153

votes

2 answers

Rails3 CSV putting "" instead of actual quotes

Similar to this question except I don't use html_safe anywhere in the whole project. I generate a CSV file in index.csv.erb like this: <%= response.content_type = 'application/octet-stream' CSV.generate do |csv| @persons.each do |person| csv…

ruby-on-rails-3 csv fastercsv html-safe

asked Sep 09 '11 at 07:40

Nicolas Raoul

58,567
58
222
373

votes

3 answers

Rails 3 Submit Tag + html_safe

What's wrong with this line of code? <%= submit_tag "Delete ".html_safe, :disable_with => "Deleting", :class => "btn btn-danger"%> This literally produces: Evidently my html_safe call isn't doing…

ruby-on-rails-3 html-sanitizing font-awesome html-safe

asked Aug 22 '12 at 16:45

Noz

6,216
3
47
82

votes

1 answer

Convert Ruby string with ampersand-hash-char-semicolon characters into an ascii or html friendly string

Using Rails 3 I am consuming an XML feed generated in drupal or something. The tags it gives me look like: So the intention is that this should really look…

ruby-on-rails ruby html-entities html-safe

asked May 09 '12 at 22:12

genkilabs

2,966
30
36

votes

2 answers

Ruby/Rails - Is there an easy way to make hard-coded HTML symbols html_safe?

In my view I want to display some right double angle quotes in my link. Before Rails 3, this worked: <%= link_to "» #{@category.name}", some_path %> Now what should I do if I want to specify the » as html_safe but not the rest of the…

ruby-on-rails-3 html-safe

asked Jun 01 '11 at 21:49

johnnycakes

2,440
2
28
36

2 3 4 5 Next