<p><code><div [innerHTML]="html"></div></code> isn't working when the html contains an Iframe. I've tried to do some security bypass with <code>this.sanitizer.bypassSecurityTrustResourceUrl(...</code>, but it still doesn't work. </p> <p>Here's the demo with angular2 not injecting correctly. </p>

<p><strong>Working PLUNKER</strong></p> <p>You need to use <code>bypassSecurityTrustHtml</code> for that, and need to assign and use the sanitized <code>html</code> like this</p> <pre class="prettyprint lang-ts prettyprint-override"><code>this.html = this.sanitizer.bypassSecurityTrustHtml(this.html); </code></pre>

<div [innerHTML]=.... not working with iframe html> in angular2 html inject

Tags:

angular

angular2-security

<div [innerHTML]="html"></div> isn't working when the html contains an Iframe. I've tried to do some security bypass with this.sanitizer.bypassSecurityTrustResourceUrl(..., but it still doesn't work.

Here's the demo with angular2 not injecting correctly.

439

asked Jul 18 '16 21:07

thouliha

1 Answers

Working PLUNKER

You need to use bypassSecurityTrustHtml for that, and need to assign and use the sanitized html like this

this.html = this.sanitizer.bypassSecurityTrustHtml(this.html);

155

answered Sep 18 '22 00:09

Ankit Singh

Recent Activity
Apple Pay - authorize.net returns error 153 only when live, sandbox works
How to continue cursor loop even error occured in the loop
python find all neighbours of a given node in a list of lists
Fatal error: Call to a member function setColumn() on a non-object in Magento
Count how many of each value from a field with MySQL and PHP
Python 32-bit development on 64-bit Windows [closed]

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With