Move jQuery plugins into modules and add them to the bundle

Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>

1 files changed, 36 insertions, 0 deletions

diff --git a/core/src/Util/escapeHTML.js b/core/src/Util/escapeHTML.js
new file mode 100644
index 00000000000..f6cf868a6d0
--- /dev/null
+++ b/core/src/Util/escapeHTML.js
@@ -0,0 +1,36 @@
+/*
+ * @copyright 2019 Christoph Wurst <christoph@winzerhof-wurst.at>
+ *
+ * @author 2019 Christoph Wurst <christoph@winzerhof-wurst.at>
+ *
+ * @license GNU AGPL version 3 or any later version
+ *
+ * This program is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU Affero General Public License as
+ * published by the Free Software Foundation, either version 3 of the
+ * License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU Affero General Public License for more details.
+ *
+ * You should have received a copy of the GNU Affero General Public License
+ * along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ */
+
+/**
+ * Sanitizes a HTML string by replacing all potential dangerous characters with HTML entities
+ * @param {string} s String to sanitize
+ * @return {string} Sanitized string
+ */
+export default function escapeHTML (s) {
+	return s.toString()
+		.split('&')
+		.join('&amp;')
+		.split('<')
+		.join('&lt;').split('>')
+		.join('&gt;').split('"')
+		.join('&quot;').split('\'')
+		.join('&#039;');
+}