feat(security): warn users when sanitizing in dev mode.

This should help developers to figure out what's going on when the sanitizer strips some input. Fixes #8522.
2016-05-09 16:46:31 +02:00
parent 9fbafba993
commit 3e68b7eb1f
6 changed files with 52 additions and 3 deletions
--- a/modules/@angular/platform-browser/src/security/html_sanitizer.ts
+++ b/modules/@angular/platform-browser/src/security/html_sanitizer.ts
@ -253,7 +253,7 @@ export function sanitizeHtml(unsafeHtml: string): string {
    }

    if (assertionsEnabled() && safeHtml !== unsafeHtml) {
-      DOM.log('WARNING: some HTML contents were removed during sanitization.');
+      DOM.log('WARNING: sanitizing HTML stripped some content.');
    }

    return safeHtml;