Encode HTML Script in Rails

Question

I want to encode HTML Scripts.

I have text like this:

"&lt;a href=&quot;https://www.w, &lt;script&gt;&lt;/script&gt;"

I want to only decode

&lt; and &gt; to < and >.

I have a method like this:

def name
  a = [last_name.to_s + ',', first_name].compact.join(' ')
  Loofah.fragment(a).text(encode_special_chars: false) 
end

But using Loofah.fragment it is decoding all html scripts ad showing like this:

"<a href=\"https://www.w, <script></script>" but I want only < and >

Could someone please help me.

Does this answer your question? [How do I encode/decode HTML entities in Ruby?](https://stackoverflow.com/questions/1600526/how-do-i-encode-decode-html-entities-in-ruby) — berkes, Jul 25 '23 at 17:36

score 0 · Answer 1 · edited Jul 25 '23 at 16:39

0

You can use string replace methods in your case like in the below example:

"&lt;a href=&quot;https://www.w, &lt;script&gt;&lt;/script&gt;".gsub("&lt;","<").gsub("&gt;",">")

edited Jul 25 '23 at 16:39

greybeard

2,249
8
30
66

answered Jul 21 '23 at 07:06

Creative Explorer

1
2

score 0 · Answer 2 · answered Jul 25 '23 at 17:39

As mentioned in this Q&A, you can use CGI or Nokogiri:

CGI.unescapeHTML("&lt;a href=&quot;https://www.w, &lt;script&gt;&lt;/script&gt;")

Nokogiri::HTML.parse(""&lt;a href=&quot;https://www.w, &lt;script&gt;&lt;/script&gt;")

But, as mentioned there as well, you are probably not dealing with raw html in the view helpers right.

<%= raw '<html>' %>

Encode HTML Script in Rails

2 Answers2