Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
sanitizing unsafe URL value javascript:;
See original GitHub issueAngular 2 final release.
I have my link as following with refers to the href=“javascript:;” my link
and i am getting following warning
WARNING: sanitizing unsafe URL value javascript:; (see http://g.co/ng/security#xss)
I need my link to be javascript:; because if i make it ‘#’ or ‘’ it refreshes the page.
i am generating elements dynamically. they can have direct links or drop downs. if they link i use url to populate in href. if they drop down i make href as void(0); so clicking on it should not refresh the page.
I have read couple of posts where people report this issue to angular folks and they will fix it… any help is appreciated.
Issue Analytics
- State:
- Created 7 years ago
- Comments:6 (1 by maintainers)
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
I don’t think you want to trick sanitization here. If you are using a link that has a click event and it shouldn’t trigger navigation just prevent default action on the event, ex.:
<a (click)="$event.preventDefault(); doSth()">or even shorter<a (click)="!!doSth()">A link without a
hreftag is not considered clickable.Firefox will be happy to not put the right cursor for <a> tags missing a href.