mirrors/etlua
1
0
Fork 0
mirror of https://github.com/TangentFoxy/etlua.git synced 2025-07-28 11:02:17 +00:00
Code Issues Packages Projects Releases Wiki Activity

html escape <%= and don't escape <%-

Browse Source
This commit is contained in:
leaf corcoran
2013-10-23 23:53:22 -07:00
parent 5cf2890dba
commit 79ad17f9f1
2 changed files with 29 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files

29
elua.moon
View File

@@ -14,11 +14,22 @@ setfenv = setfenv or (fn, env) ->
fn fn
html_escape_entities = {
['&']: '&amp;'
['<']: '&lt;'
['>']: '&gt;'
['"']: '&quot;'
["'"]: '&#039;'
}
html_escape = (str) ->
(str\gsub [=[["><'&]]=], html_escape_entities)
class Parser class Parser
open_tag: "<%" open_tag: "<%"
close_tag: "%>" close_tag: "%>"
modifiers: "^[=-]" modifiers: "^[=-]"
html_escape: true
next_tag: => next_tag: =>
start, stop = @str\find @open_tag, @pos, true start, stop = @str\find @open_tag, @pos, true
@@ -47,8 +58,7 @@ class Parser
close_start -= 1 close_start -= 1
true true
kind = modifier == "=" and "interplate" or "code" @push_code modifier or "code", @pos, close_start - 1
@push_code kind, @pos, close_start - 1
@pos = close_stop + 1 @pos = close_stop + 1
@@ -120,16 +130,16 @@ class Parser
code_fn = coroutine.wrap -> code_fn = coroutine.wrap ->
coroutine.yield code coroutine.yield code
fn = load code_fn, name fn = assert load(code_fn, name)
(env={}) -> (env={}) ->
setfenv fn, env setfenv fn, env
fn tostring, concat fn tostring, concat, html_escape
-- generates the code of the template -- generates the code of the template
chunks_to_lua: => chunks_to_lua: =>
-- todo: find a no-conflict name for buffer -- todo: find a no-conflict name for buffer
buffer = { buffer = {
"local _b, _b_i, _tostring, _concat = {}, 0, ..." "local _b, _b_i, _tostring, _concat, _escape = {}, 0, ..."
} }
buffer_i = #buffer buffer_i = #buffer
@@ -146,8 +156,13 @@ class Parser
push "_b[_b_i] = #{("%q")\format(chunk)}" push "_b[_b_i] = #{("%q")\format(chunk)}"
when "code" when "code"
push chunk[2] push chunk[2]
when "interplate" when "=", "-"
assign = "_b[_b_i] = _tostring(#{chunk[2]})" assign = "_tostring(#{chunk[2]})"
if t == "=" and @html_escape
assign = "_escape(" .. assign .. ")"
assign = "_b[_b_i] = " .. assign
-- validate syntax -- validate syntax
unless loadstring assign unless loadstring assign

20
spec/elua_spec.moon
View File

@@ -22,10 +22,14 @@ describe "elua", ->
} }
{ {
"y%>u" "y%&gt;u"
[[<%= "y%>u" %>]] [[<%= "y%>u" %>]]
} }
{
"y%>u"
[[<%- "y%>u" %>]]
}
{ {
[[ [[
@@ -35,29 +39,19 @@ This is my message to 4
hello 1 hello 1
hello 2 hello 2
hello 3 hello 3
hello 4 hello 4
hello 5 hello 5
hello 6 hello 6
hello 7 hello 7
hello 8 hello 8
hello 9 hello 9
hello 10 hello 10
message: yeah message: yeah
This is my message to oh yeah %>"]] This is my message to oh yeah %&gt;&quot;]]
[[ [[
This is my message to <%= "you" %> This is my message to <%= "you" %>
This is my message to <%= 4 %> This is my message to <%= 4 %>
@@ -66,7 +60,7 @@ This is my message to <%= 4 %>
<% end %> <% end %>
<% for i=1,10 do%> <% for i=1,10 do%>
hello <%= i %> hello <%= i -%>
<% end %> <% end %>
message: <%= visitor %> message: <%= visitor %>