As the name suggests, this component is the opposite of React's ominous sounding dangerouslySetInnerHTML DOM attribute.
npm install react-safely-set-inner-htmlAs the name suggests, this component is the opposite of React's ominous sounding dangerouslySetInnerHTML DOM attribute.
Under the hood, this component first uses htmlparser2 to parse the html input,
then traverses the object tree, transform the data to React props, and then finally call the top-level
API React.createElement function to safely render the output.
``javascript
import ReactSafelySetInnerHTML from 'react-safely-set-inner-html';
const html =
HTML string to set within React using the ReactSafelySetInnerHTML component.
;return (
{html}
);
`By default, the following tags are allowed:
javascript
[
'div', 'span', 'a', 'b', 'i', 'strong', 'small', 'table', 'thead', 'tbody', 'tfoot',
'th', 'td', 'tr', 'td', 'caption', 'colgroup', 'col', 'video', 'audio', 'source',
]
`You can override the default tags by specifying a custom
prop:`javascript
import ReactSafelySetInnerHTML from 'react-safely-set-inner-html';return (
{html}
);
`Alternatively, the
prop blacklists tags, but all other tags not specified in the list will be allowed and
the allowedTags prop will be ignored.`javascript
import ReactSafelySetInnerHTML from 'react-safely-set-inner-html';return (
{html}
);
`String substitutions are supported via the
prop with keys wrapped in curly braces. Keys without a
match will be ignored.`javascript
import ReactSafelySetInnerHTML from 'react-safely-set-inner-html';return (
{
Hello, {name}}
);
``