Htmlescape () method of JS special character escape

In order to prevent XSS attacks, often need to user input special characters escaped, the original JS seems to have not directly to its professional methods, recently read JS high-level programming time just see, happened to the project also just need to use the second method, so the family moved to use.

There are many methods of escaping on the net, in fact, the principle is basically the same, once again the code on the tree directly moved to share to everyone (to be updated ...). ）

/* Incoming HTML string source code */

function Htmlescape (text) {
Return Text.replace (/[<> "&]/g, Function (Match, POS, originaltext) {
Switch (match) {
Case "<": return "&lt;";
Case ">": Return "&gt;";
Case "&": Return "&amp;";
Case "\" ": Return" &quot; ";
}
});
}

Htmlescape () method of JS special character escape