33 lines
735 B
Markdown
33 lines
735 B
Markdown
---
|
|
title: Escape HTML
|
|
tags: string,regexp
|
|
cover: periscope
|
|
firstSeen: 2017-12-29T15:09:21+02:00
|
|
lastUpdated: 2021-10-13T19:29:39+02:00
|
|
---
|
|
|
|
Escapes a string for use in HTML.
|
|
|
|
- Use `String.prototype.replace()` with a regexp that matches the characters that need to be escaped.
|
|
- Use the callback function to replace each character instance with its associated escaped character using a dictionary object.
|
|
|
|
```js
|
|
const escapeHTML = str =>
|
|
str.replace(
|
|
/[&<>'"]/g,
|
|
tag =>
|
|
({
|
|
'&': '&',
|
|
'<': '<',
|
|
'>': '>',
|
|
"'": ''',
|
|
'"': '"'
|
|
}[tag] || tag)
|
|
);
|
|
```
|
|
|
|
```js
|
|
escapeHTML('<a href="#">Me & you</a>');
|
|
// '<a href="#">Me & you</a>'
|
|
```
|