digital-telepresence
/
dtp-base-v1
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Browse Source

add filterText service method to strip HTML tags and Zalgo text

pull/2/head
Rob Colbert 3 years ago
parent
8aa71f7b1b
commit
d6bd4cc103
1 changed files with 13 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 14
      app/services/chat.js

14
app/services/chat.js
View File

@ -8,7 +8,8 @@ const mongoose = require('mongoose');
const ChatMessage = mongoose.model('ChatMessage'); const ChatMessage = mongoose.model('ChatMessage');
const ioEmitter = require('socket.io-emitter'); const ioEmitter = require('socket.io-emitter');
const striptags = require('striptags');
const unzalgo = require('unzalgo');
const { SiteService } = require('../../lib/site-lib'); const { SiteService } = require('../../lib/site-lib');
@ -44,6 +45,17 @@ class ChatService extends SiteService {
params: { messageId: message._id }, params: { messageId: message._id },
}); });
} }
/**
* Filters an input string to remove "zalgo" text and to strip all HTML tags.
* This prevents cross-site scripting and the malicious destruction of text
* layouts.
* @param {String} content The text content to be filtered.
* @returns the filtered text
*/
filterText (content) {
return striptags(unzalgo.clean(content.trim()));
}
} }
module.exports = { module.exports = {

Write Preview
Loading…
Cancel
Save