Class: Erubis::XmlEruby

Inherits:

Eruby

• Object
• Eruby
• Erubis::XmlEruby

Defined in:

lib/erubis.rb

Overview

do sanitizing of <%= %>

Direct Known Subclasses

FastXmlEruby, PrintXmlEruby, StdoutXmlEruby

Instance Attribute Summary

Attributes inherited from Eruby

#filename, #src

Class Method Summary

• .escape(obj) ⇒ Object

Instance Method Summary

• #add_src_expr(src, code, indicator) ⇒ Object

Methods inherited from Eruby

#compile, #evaluate, #initialize, load_file, #result

Constructor Details

This class inherits a constructor from Erubis::Eruby

Class Method Details

.escape(obj) ⇒ Object

# File 'lib/erubis.rb', line 162

def self.escape(obj)
  str = obj.to_s.dup
  #str = obj.to_s
  #str = str.dup if obj.__id__ == str.__id__
  str.gsub!(/&/, '&')
  str.gsub!(/</, '&lt;')
  str.gsub!(/>/, '&gt;')
  str.gsub!(/"/, '&quot;')   #"
  return str
end

Instance Method Details

#add_src_expr(src, code, indicator) ⇒ Object

# File 'lib/erubis.rb', line 173

def add_src_expr(src, code, indicator)
  case indicator
  when '='    # <%= %>
    src << "_out << Erubis::XmlEruby.escape(#{code}); "
  when '=='   # <%== %>
    super
  when '==='  # <%=== %>
    code.strip!
    s = code.dump
    s.sub!(/\A"/, '')
    s.sub!(/"\z/, '')
    src << "$stderr.puts(\"** erubis: #{s} = \#{(#{code}).inspect}\"); "
  else
    # nothing
  end
end