I am trying to send HTML to a template in Mojolicious and am finding that the html is getting replaced with safe strings somewhere along the way. <pre class="prettyprint"><code>$self->stash(portalHeaderHtml => "<html>"); </code></pre> Becomes <pre class="prettyprint"><code> &lt;html&gt; </code></pre> In the source The template: <pre class="prettyprint"><code><%= $portalHeaderHtml %> </code></pre> How do I tell it to display HTML and not replace tags?

<code>Mojolicious::Guides::Rendering</code> suggests using <code>==</code> to disable escaping of characters. <blockquote> An additional equal sign can be used to disable escaping of the characters <, >, &, ' and " in results from Perl expressions, which is the default to prevent XSS attacks against your application. <pre class="prettyprint"><code><%== 'test' %> </code></pre> </blockquote> Proceed with caution.

How can I prevent Mojolicious from character-escaping stash data?

I am trying to send HTML to a template in Mojolicious and am finding that the html is getting replaced with safe strings somewhere along the way.

$self->stash(portalHeaderHtml => "<html>");

Becomes

 &lt;html&gt;

In the source

The template:

<%= $portalHeaderHtml %>

How do I tell it to display HTML and not replace tags?

Mojolicious::Guides::Rendering suggests using == to disable escaping of characters.

An additional equal sign can be used to disable escaping of the characters <, >, &, ' and " in results from Perl expressions, which is the default to prevent XSS attacks against your application.
<%== 'test' %>

Proceed with caution.

How can I prevent Mojolicious from character-escaping stash data?

Tags:

html-entities

perl

mojolicious

shaneburgess

1 Answers

Zaid

Recent Activity

Donate For Us

How can I prevent Mojolicious from character-escaping stash data?

Tags:

html-entities

perl

mojolicious

shaneburgess

1 Answers

Zaid

Related questions

Recent Activity

Donate For Us