diff options
Diffstat (limited to 'vendor/smarty/smarty/docs/programmers/api-variables/variable-escape-html.md')
-rw-r--r-- | vendor/smarty/smarty/docs/programmers/api-variables/variable-escape-html.md | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/vendor/smarty/smarty/docs/programmers/api-variables/variable-escape-html.md b/vendor/smarty/smarty/docs/programmers/api-variables/variable-escape-html.md new file mode 100644 index 000000000..39ff28027 --- /dev/null +++ b/vendor/smarty/smarty/docs/programmers/api-variables/variable-escape-html.md @@ -0,0 +1,21 @@ +\$escape\_html {#variable.escape.html} +============== + +Setting `$escape_html` to TRUE will escape all template variable output +by wrapping it in +`htmlspecialchars({$output}, ENT_QUOTES, SMARTY_RESOURCE_CHAR_SET);`, +which is the same as `{$variable|escape:"html"}`. + +Template designers can choose to selectively disable this feature by +adding the `nofilter` flag: `{$variable nofilter}`. + +Modifiers and Filters are run in the following order: modifier, +default\_modifier, \$escape\_html, registered variable filters, +autoloaded variable filters, template instance\'s variable filters. +Everything except the individual modifier can be disabled with the +`nofilter` flag. + +> **Note** +> +> This is a compile time option. If you change the setting you must make +> sure that the templates get recompiled. |