我已将以下方法添加到ApplicationHelper中的模块app/helpers/application_helper.rb:
def autofill_inputs model, index, fkey
value ="#{model}_#{index}"
text_field_tag nil, nil, :data => {value: value, source: "<%= #{model.pluralize}_path(:json) %>"}
end
我在app/views/transactions/new.html.erb中调用它:
<%= autofill_inputs "transaction", 0, "entity" %>
毫无疑问,为了实现注入预防,生成的HTML中的<input>将尖括号转出:
<input type="text" id="" data-value="transaction_0" data-source="<%= transactions_path(:json) %>" />
是否有“erb tag helper”?