mirror of
https://github.com/gohugoio/hugo.git
synced 2024-11-29 23:53:32 -05:00
5fd1e74903
``` git subtree add --prefix=docs/ https://github.com/gohugoio/hugoDocs.git master --squash ``` Closes #11925
1.3 KiB
1.3 KiB
title | description | categories | keywords | action | aliases | ||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
safe.HTMLAttr | Declares the given key/value pair as a safe HTML attribute. |
|
|
Given a site configuration that contains this menu entry:
{{< code-toggle file=hugo >}} menus.main name = "IRC" url = "irc://irc.freenode.net/#golang" {{< /code-toggle >}}
Attempting to use the url
value directly in an attribute:
{{ range site.Menus.main }}
<a href="{{ .URL }}">{{ .Name }}</a>
{{ end }}
Will produce:
<a href="#ZgotmplZ">IRC</a>
ZgotmplZ
is a special value, inserted by Go's template/html package, that indicates that unsafe content reached a CSS or URL context.
To indicate that the HTML attribute is safe:
{{ range site.Menus.main }}
<a {{ printf "href=%q" .URL | safeHTMLAttr }}>{{ .Name }}</a>
{{ end }}
{{% note %}}
As demonstrated above, you must pass the HTML attribute name and value through the function. Applying safeHTMLAttr
to the attribute value has no effect.
{{% /note %}}