“安全” python HTML文本格式(ala textile) [英] A "safe" python HTML text formatting (ala textile)
问题描述
我一直在寻找一个现有的Python图书馆,以纺织品的形式格式化文本,供用户进入。
I've been looking around for an existing python library in the style of textile to format text for users to enter.
如果只是我输入,只是纺织品一直都很好,但是由于输入是用于一个django应用程序,将用户输入并显示它,同时仍然保留一些格式。
If it was just me entering it, just textile would have been fine, but since the input is meant for a django app that will take user input and display it, while still maintaining some formatting.
我设法在我看到的现有图书馆里找到一些漏洞。他们有时候不会以这样的方式逃避事情,请允许我直接输入HTML,列表继续下去。
I managed to find little loopholes here in there in the existing libraries I saw. They sometimes wouldn't escape things the way they should have, would let me input straight HTML and the list goes on.
那么,我可以提供哪些转换引擎使用?
So what are some recommendations of conversion engines I can use?
推荐答案
如果您使用Django,您可以尝试安全的降价:
If you're using Django, you could try safe markdown:
{% load markup %}
{{ foo|markdown:"safe" }}
您需要安装markdown,而 django.contrib.markup
c $ c> settings.py 应用程序。
You'll need to have markdown installed, and django.contrib.markup
in your settings.py
apps.
如果要在保存时清除HTML,我已经好运使用feedparser的清理 http://www.feedparser.org/ )。
If you want to sanitize HTML on save, I've had good luck using feedparser's sanitize (http://www.feedparser.org/).
import feedparser
body = feedparser._sanitizeHTML(body, 'utf8')
这篇关于“安全” python HTML文本格式(ala textile)的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!