how to unescape the content of guest before run?

27 views
Skip to first unread message

o x

unread,
May 1, 2017, 1:11:31 AM5/1/17
to Google Caja Discuss
hello
how to unescape the content of guest before run?
i stored the content in escape string data and Caja load that content at it is.
i wounder how to unescape the text content before Caja sanitize the text.

thank you. 

o x

unread,
May 1, 2017, 1:14:01 AM5/1/17
to Google Caja Discuss
sorry:
how to unescape the content of guest before run? = how to unescape the content FOR guest before run?

Kevin Reid

unread,
May 1, 2017, 12:35:48 PM5/1/17
to Google Caja Discuss
On Sun, Apr 30, 2017 at 10:11 PM, o x <y.tra...@gmail.com> wrote:
how to unescape the content [for] guest before run?
i stored the content in escape string data and Caja load that content at it is.
i wounder how to unescape the text content before Caja sanitize the text.

Could you explain what type of escaping you mean and why you want Caja to do it rather than doing it yourself before passing the string to Caja?

o x

unread,
May 2, 2017, 1:01:17 AM5/2/17
to Google Caja Discuss
thank you for last replay.
so the .JS client post the escape html content (an advertisement content) to asp.net server side.
the server store the content in xxx1.txt file, 
the CAJA spouse to get the text from xxx1.txt and load it to guest.

the way i make the call from caja to the .txt is having the same file name,
so xxx1.html (with caja) call xxx1.txt (on same path)

      caja.load(document.getElementById('guest'), undefined, function(frame) {
          frame.code(document.location.href.replace(/\.[^/.]+$/, ".txt"),
                   'text/html')
             .run();
      });
ad-Right-1-10500840416-180x700.html
ad-Right-1-10500840416-180x700.txt
---------------------------------------------------------------

so at the moment i unescape from the server... rusher then on client, as well i havent checked if caja filter escape content.. (case unescape it after caja run...)    

Kevin Reid

unread,
May 2, 2017, 12:17:54 PM5/2/17
to Google Caja Discuss
You'll have to arrange for whatever unescaping you need yourself. 

--

---
You received this message because you are subscribed to the Google Groups "Google Caja Discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-caja-discuss+unsub...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

o x

unread,
May 2, 2017, 2:20:26 PM5/2/17
to Google Caja Discuss
ok thank you
Reply all
Reply to author
Forward
0 new messages