feat(context): add safe method to ignore escaping

calling safe before escape will make escape method ignore the escaping
edge-js · Mar 28, 2017 · dfb7d46 · dfb7d46
1 parent 9be4fbe
commit dfb7d46
Show file tree

Hide file tree

Showing 2 changed files with 28 additions and 0 deletions.
diff --git a/src/Context/index.js b/src/Context/index.js
@@ -13,6 +13,16 @@ const _ = require('lodash')
 const debug = require('debug')('edge:context')
 const escape = require('escape-html')
 
+class Safe {
+  constructor (input) {
+    this._input = input
+  }
+
+  toString () {
+    return this._input
+  }
+}
+
 /**
  * Runtime context used to run the compiled
  * templates. View **locals**, **globals**,
@@ -217,6 +227,10 @@ class Context {
     return _.get(hash, childs)
   }
 
+  safe (input) {
+    return new Safe(input)
+  }
+
   /**
    * Escapes the input by sanitizing HTML.
    *
@@ -227,6 +241,9 @@ class Context {
    * @return {String}
    */
   escape (input) {
+    if (input instanceof Safe) {
+      return input.toString()
+    }
     return escape(input)
   }
 

diff --git a/test/unit/template.spec.js b/test/unit/template.spec.js
@@ -425,4 +425,15 @@ test.group('Template Runner', () => {
     raw string
     `)
   })
+
+  test('calling escape after safe should not escape the content', (assert) => {
+    const loader = new Loader(path.join(__dirname, '../../test-helpers/views'))
+    const template = new Template(this.tags, {}, {}, loader)
+    const output = template.renderString('{{ someHtml() }}', {
+      someHtml () {
+        return this.safe('<h2> Hello </h2>')
+      }
+    })
+    assert.equal(output.trim(), '<h2> Hello </h2>')
+  })
 })