Why escape_javascript before rendering a partial?(为什么在渲染部分之前使用 escape_javascript?)
本文介绍了为什么在渲染部分之前使用 escape_javascript?的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!
问题描述
I'm looking at this Railscast episode and wondering why the call to escape_javascript is needed here:
$("#reviews").append("<%= escape_javascript(render(:partial => @review)) %>");
What is escape_javascript used for?
According to the Rails docs:
escape_javascript(javascript)
Escape carrier returns and single and double quotes for JavaScript segments.
But that doesn't mean much to me.
解决方案
Because you don't want users posting JavaScript that the browser actually executes?
这篇关于为什么在渲染部分之前使用 escape_javascript?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持编程学习网!
