safeString

  • function
 

can.mustache.safeString(str)

Parameters

  1. str {String}

    A string you don't want to become escaped.

Returns

{String}

A string flagged by can.mustache as safe, which will not become escaped, even if you use {{{key}}}(triple slash).

If you write a helper that generates its own HTML, you will usually want to return a can.mustache.safeString. In this case, you will want to manually escape parameters with can.esc.

can.mustache.registerHelper('link', function(text, url) {
  text = can.esc(text);
  url  = can.esc(url);

  var result = '<a href="' + url + '">' + text + '</a>';
  return can.mustache.safeString(result);
});

Rendering:

<div>{{link "Google", "http://google.com"}}</div>

Results in:

<div><a href="http://google.com">Google</a></div>

As an anchor tag whereas if we would have just returned the result rather than a can.mustache.safeString our template would have rendered a div with the escaped anchor tag.