Lack of a unescape/safe helper when autoescape in on #108

n1k0 · 2012-01-26T09:57:22Z

When using cofeekup with express and enabling autoescape, the @body property in the layout will be escaped as well; it should not.

# sample express application - app.coffee

app.configure ->
    @set "view options", autoescape: true # autoescaping enabled
    @set "views", "#{__dirname}/views"
    @set "view engine", "coffee"
    @register '.coffee', coffeekup.adapters.express

# layout.coffee

doctype 5
html -> body -> @body # <-- body contents will be escaped, including 
                      #     markup generated by coffeekup itself!

What would be especially cool is a safe helper:

# layout.coffee

doctype 5
html -> body -> safe @body # <-- tags generated by coffeekup wouldn't be 
                           #     escaped, only variables would)

What do you think? I can work on a patch and send a PR if you agree on this.

The text was updated successfully, but these errors were encountered:

n1k0 · 2012-01-26T12:40:12Z

For the record, this is a quick workaround:

doctype 5
html -> body ->
    @autoescape = false
    @body

I keep thinking that a safe helper is needed though :)

… in on

n1k0 added a commit to n1k0/coffeekup that referenced this issue Jan 26, 2012

refs mauricemach#108 - Lack of a unescape/safe helper when autoescape…

9374da4

… in on

n1k0 mentioned this issue Jan 26, 2012

Added "safe" helper #109

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Lack of a unescape/safe helper when autoescape in on #108

Lack of a unescape/safe helper when autoescape in on #108

n1k0 commented Jan 26, 2012

n1k0 commented Jan 26, 2012

Lack of a unescape/safe helper when autoescape in on #108

Lack of a unescape/safe helper when autoescape in on #108

Comments

n1k0 commented Jan 26, 2012

n1k0 commented Jan 26, 2012