feat(service): introduce new sanitize strategies: sce/sceParameters

Both `sce` and `sceParameters` are based on `$sce.trustAsHtml()`.

Relates #1101

src/service/sanitization.js

@@ -13,6 +13,7 @@ function $translateSanitizationProvider () {
   'use strict';
 
   var $sanitize,
+      $sce,
       currentStrategy = null, // TODO change to either 'sanitize', 'escape' or ['sanitize', 'escapeParameters'] in 3.0.
       hasConfiguredStrategy = false,
       hasShownNoStrategyConfiguredWarning = false,
@@ -72,6 +73,23 @@ function $translateSanitizationProvider () {
         value = mapInterpolationParameters(value, htmlEscapeValue);
       }
       return value;
+    },
+    sce: function (value, mode, context) {
+      if (mode === 'text') {
+        value = htmlTrustValue(value);
+      } else if (mode === 'params') {
+        if (context !== 'filter') {
+          // do html escape in filter context #1101
+          value = mapInterpolationParameters(value, htmlEscapeValue);
+        }
+      }
+      return value;
+    },
+    sceParameters: function (value, mode/*, context*/) {
+      if (mode === 'params') {
+        value = mapInterpolationParameters(value, htmlTrustValue);
+      }
+      return value;
     }
   };
   // Support legacy strategy name 'escaped' for backwards compatibility.
@@ -176,6 +194,9 @@ function $translateSanitizationProvider () {
     if ($injector.has('$sanitize')) {
       $sanitize = $injector.get('$sanitize');
     }
+    if ($injector.has('$sce')) {
+      $sce = $injector.get('$sce');
+    }
 
     return {
       /**
@@ -244,6 +265,13 @@ function $translateSanitizationProvider () {
     return $sanitize(value);
   };
 
+  var htmlTrustValue = function (value) {
+    if (!$sce) {
+      throw new Error('pascalprecht.translate.$translateSanitization: Error cannot find $sce service.');
+    }
+    return $sce.trustAsHtml(value);
+  };
+
   var mapInterpolationParameters = function (value, iteratee, stack) {
     if (angular.isDate(value)) {
       return value;