class ActiveSupport::SafeBuffer

Constants

UNSAFE_STRING_METHODS
UNSAFE_STRING_METHODS_WITH_BACKREF

Public Class Methods

new(str = "") click to toggle source
Calls superclass method
# File lib/active_support/core_ext/string/output_safety.rb, line 200
def initialize(str = "")
  @html_safe = true
  super
end

Public Instance Methods

%(args) click to toggle source
Calls superclass method
# File lib/active_support/core_ext/string/output_safety.rb, line 254
def %(args)
  case args
  when Hash
    escaped_args = args.transform_values { |arg| html_escape_interpolated_argument(arg) }
  else
    escaped_args = Array(args).map { |arg| html_escape_interpolated_argument(arg) }
  end

  self.class.new(super(escaped_args))
end
*(*) click to toggle source
Calls superclass method
# File lib/active_support/core_ext/string/output_safety.rb, line 247
def *(*)
  new_string = super
  new_safe_buffer = new_string.is_a?(SafeBuffer) ? new_string : SafeBuffer.new(new_string)
  new_safe_buffer.instance_variable_set(:@html_safe, @html_safe)
  new_safe_buffer
end
+(other) click to toggle source
# File lib/active_support/core_ext/string/output_safety.rb, line 243
def +(other)
  dup.concat(other)
end
<<(value)
Alias for: concat
[](*args) click to toggle source
Calls superclass method
# File lib/active_support/core_ext/string/output_safety.rb, line 181
def [](*args)
  if html_safe?
    new_string = super

    return unless new_string

    new_safe_buffer = new_string.is_a?(SafeBuffer) ? new_string : SafeBuffer.new(new_string)
    new_safe_buffer.instance_variable_set :@html_safe, true
    new_safe_buffer
  else
    to_str[*args]
  end
end
[]=(*args) click to toggle source
Calls superclass method
# File lib/active_support/core_ext/string/output_safety.rb, line 235
def []=(*args)
  if args.length == 3
    super(args[0], args[1], html_escape_interpolated_argument(args[2]))
  else
    super(args[0], html_escape_interpolated_argument(args[1]))
  end
end
bytesplice(*args, value) click to toggle source
Calls superclass method
# File lib/active_support/core_ext/string/output_safety.rb, line 219
def bytesplice(*args, value)
  super(*args, implicit_html_escape_interpolated_argument(value))
end
clone_empty() click to toggle source
# File lib/active_support/core_ext/string/output_safety.rb, line 210
def clone_empty
  self[0, 0]
end
concat(value) click to toggle source
Calls superclass method
# File lib/active_support/core_ext/string/output_safety.rb, line 214
def concat(value)
  super(html_escape_interpolated_argument(value))
end
Also aliased as: original_concat, <<
encode_with(coder) click to toggle source
# File lib/active_support/core_ext/string/output_safety.rb, line 277
def encode_with(coder)
  coder.represent_object nil, to_str
end
html_safe?() click to toggle source
# File lib/active_support/core_ext/string/output_safety.rb, line 265
def html_safe?
  defined?(@html_safe) && @html_safe
end
initialize_copy(other) click to toggle source
Calls superclass method
# File lib/active_support/core_ext/string/output_safety.rb, line 205
def initialize_copy(other)
  super
  @html_safe = other.html_safe?
end
insert(index, value) click to toggle source
Calls superclass method
# File lib/active_support/core_ext/string/output_safety.rb, line 223
def insert(index, value)
  super(index, html_escape_interpolated_argument(value))
end
original_concat(value)
Alias for: concat
prepend(value) click to toggle source
Calls superclass method
# File lib/active_support/core_ext/string/output_safety.rb, line 227
def prepend(value)
  super(html_escape_interpolated_argument(value))
end
replace(value) click to toggle source
Calls superclass method
# File lib/active_support/core_ext/string/output_safety.rb, line 231
def replace(value)
  super(html_escape_interpolated_argument(value))
end
safe_concat(value) click to toggle source
# File lib/active_support/core_ext/string/output_safety.rb, line 195
def safe_concat(value)
  raise SafeConcatError unless html_safe?
  original_concat(value)
end
to_param() click to toggle source
# File lib/active_support/core_ext/string/output_safety.rb, line 273
def to_param
  to_str
end
to_s() click to toggle source
# File lib/active_support/core_ext/string/output_safety.rb, line 269
def to_s
  self
end

Private Instance Methods

html_escape_interpolated_argument(arg) click to toggle source
# File lib/active_support/core_ext/string/output_safety.rb, line 326
def html_escape_interpolated_argument(arg)
  (!html_safe? || arg.html_safe?) ? arg : CGI.escapeHTML(arg.to_s)
end
set_block_back_references(block, match_data) click to toggle source
# File lib/active_support/core_ext/string/output_safety.rb, line 330
def set_block_back_references(block, match_data)
  block.binding.eval("proc { |m| $~ = m }").call(match_data)
rescue ArgumentError
  # Can't create binding from C level Proc
end