7 commits

Author	SHA1	Message	Date
paolo-delmundo	e66c23fe55	fix($sanitize): sanitize DOCTYPE declarations correctly ... HTML to be sanitized that contains a DOCTYPE declaration were causing the HTML parser to throw an error. Now the parser correctly removes the declarations when sanitizing HTML. Closes #3931	2013-10-03 08:42:15 +01:00
R. Merkert	21e9e8cf68	fix(ngSanitize): sanitizer should not accept <!--> as a valid comment ... According to http://validator.w3.org/ , <!--> is not a valid comment and neither is any comment containing the -- substring.	2013-09-11 22:40:09 +02:00
Pete Bacon Darwin	7fef06fef9	fix(sanitize): match URI schemes case-insensitively ... According to RFC 3986 (http://tools.ietf.org/html/rfc3986#section-3.1) schemes such as http or mailto are case-insensitive. So links such as http://server/ and HTTP://server/ are valid and equivalent. Closes #3210	2013-07-12 09:29:21 +01:00
metaweta	3b317c5dcb	test(ngBindHtml): prevent variable name leak ... Add "var" so element is local instead of global Strict mode doesn't allow undeclared global vars, and these really should be local anyway.	2013-01-29 13:26:06 -08:00
Zach Dexter	610927d77b	feat(linky): allow optional 'target' argument ... Closes #1443	2012-11-24 22:21:50 +01:00
Anna Vester	04450c48df	feat($sanitize): support telephone links ... Per http://www.ietf.org/rfc/rfc3966.txt support tel: links	2012-11-11 10:31:27 +01:00
Vojta Jina	5bcd719866	chore(ngSanitize): extract $sanitize, ngBindHtml, linkyFilter into a module ... Create build for other modules as well (ngResource, ngCookies): - wrap into a function - add license - add version Breaks `$sanitize` service, `ngBindHtml` directive and `linky` filter were moved to the `ngSanitize` module. Apps that depend on any of these will need to load `angular-sanitize.js` and include `ngSanitize` in their dependency list: `var myApp = angular.module('myApp', ['ngSanitize']);`	2012-04-11 15:50:47 -07:00