我觉得这应该很容易,因为我使用ngBindHtmlUnsafe与Angular 1.0.8完美配合。我在API文档和StackOverflow上阅读了我现在需要$sce.trustAsHtml()使用ngBindHtml但我似乎无法使其工作。
这基本上是我在阅读的内容中使用的格式:
var myApp = angular.module('myApp', []);
function myController($scope, $sce){
$scope.myHtml = $sce.trustAsHtml($scope.sourceText);
}
HTML:
<html ng-app="myApp">
<head>
<script data-require="angular.js@1.2.0-rc3" data-semver="1.2.0-rc3-nonmin" src="http://code.angularjs.org/1.2.0-rc.3/angular.js"></script>
<link rel="stylesheet" href="style.css" />
<script src="script.js"></script>
</head>
<body>
<div ng-controller="myController">
<textarea ng-model="sourceText"></textarea>
<div ng-bind-html="myHtml"></div>
</div>
</body>
</html>
我认为这将是直截了当的,但我一定是错的,错过了一些东西。
我将这个简单的例子放到了一个Plunker:http://plnkr.co/edit/ZX4dONBlzv1X8BcO1IBV?p=preview
答案 0 :(得分:12)
这是你要找的吗? http://plnkr.co/edit/IZkzsuKHvbYiyV07CGqp
// would strongly suggest including sanitize in your scripts and injecting it
// into your app here to prevent "unsafe as safe" errors
var myApp = angular.module('myApp', ['ngSanitize']);
myApp.controller('myController', ['$scope', '$sce', function myController($scope, $sce){
$scope.myHtml = "initial"; //not needed, for testing
$scope.changeText = function() {
$scope.myHtml = $sce.trustAsHtml($scope.sourceText);
}
}]);
HTML:
<head>
<script data-require="angular.js@1.2.0-rc3" data-semver="1.2.0-rc3-nonmin" src="http://code.angularjs.org/1.2.0-rc.3/angular.js"></script>
<script src="http://code.angularjs.org/1.2.0-rc.3/angular-sanitize.min.js"></script>
<link rel="stylesheet" href="style.css" />
<script src="script.js"></script>
</head>
<body>
<div ng-controller="myController">
<textarea ng-model="sourceText" ng-change="changeText()"></textarea>
<div ng-bind-html="myHtml"></div>
</div>
</body>
</html>