Decode string in React

2.5k Views Asked by Mendi Sterenfeld At 17 February 2022 at 14:18

I'm displaying user comments on react with DomPurify. When the user enters a dangerous strings: eg ' it gets encoded, how can I safely decode it?

Here is the code:

 <p className="donor-comment">
    {DOMPurify.sanitize(hit.comment)}
 </p>

Thanks in advance

Original Q&A

There are 1 best solutions below

is2ei On 22 February 2022 at 11:40 BEST ANSWER

You don't have to escape user input manually or by using third-party libs like DOMPurify. React DOM does it by default.

https://reactjs.org/docs/introducing-jsx.html#jsx-prevents-injection-attacks

By default, React DOM escapes any values embedded in JSX before rendering them. Thus it ensures that you can never inject anything that’s not explicitly written in your application. Everything is converted to a string before being rendered. This helps prevent XSS (cross-site-scripting) attacks.

Decode string in React

There are 1 best solutions below

Related Questions in JAVASCRIPT

Related Questions in REACTJS

Related Questions in DECODE

Related Questions in DOMPURIFY

Trending Questions

Popular # Hahtags

Popular Questions