Class: Twig::Runtime::Escaper

Inherits:

Object

• Object
• Twig::Runtime::Escaper

Defined in:

lib/twig/runtime/escaper.rb

Constant Summary

JS_SHORT_MAP =

{
  '\\' => '\\\\',
  '/' => '\\/',
  "\x08" => '\b',
  "\x0C" => '\f',
  "\x0A" => '\n',
  "\x0D" => '\r',
  "\x09" => '\t',
}.freeze

Instance Method Summary

• #escape(string, strategy = :html, charset = nil, autoescape = false) ⇒ Object
• #initialize(charset) ⇒ Escaper constructor

  A new instance of Escaper.

Constructor Details

#initialize(charset) ⇒ Escaper

Returns a new instance of Escaper.

# File 'lib/twig/runtime/escaper.rb', line 6

def initialize(charset)
  @charset = charset
end

Instance Method Details

#escape(string, strategy = :html, charset = nil, autoescape = false) ⇒ Object

# File 'lib/twig/runtime/escaper.rb', line 20

def escape(string, strategy = :html, charset = nil, autoescape = false)
  # Allow strings marked as html_safe to get through without escaping
  if string.html_safe? && autoescape
    return string
  end

  case strategy.to_sym
  when :html
    CGI.escapeHTML(string.to_s)
  when :html_attr
    escape_html_attr(string.to_s, charset || @charset)
  when :js
    escape_js(string.to_s, charset || @charset)
  when :css
    escape_css(string.to_s, charset || @charset)
  when :url
    CGI.escape(string.to_s)
  else
    string.to_s
  end.html_safe
end