Laravel Escaping All HTML in Blade Template

Question

I m building a small CMS in Laravel and I tried to show the content  which is stored in the DB   It is showing the HTML tags instead of executing them  Its like there is an auto html entity decode for all printed data    lt  php  class CmsController extends BaseController       public function Content  name                     data   Pages  where  CID        Config  get  company CID                - gt where  page name         name              - gt first             return View  make  cms page  - gt with  content    data             I tried to print the content using the curly brace       content- gt page desc      and triple curly brace        content- gt page desc       And they give the same result  I need to execute those HTML tags instead of escaping them

User · Answer

html entity decode   post- content      saved the issue for me with Laravel 4 0  Now My HTML content is interpreted as it should

User · Answer

Include the content in     lt content gt

User · Answer

There is no problem with displaying HTML code in blade templates   For test  you can add to routes php only one route   Route  get      function                data   new stdClass             data- gt page desc                 lt strong gt aaa lt  strong gt  lt em gt bbb lt  em gt                  lt p gt New paragaph lt  p gt  lt script gt alert  Hello    lt  script gt             return View  make  hello  - gt with  content    data              and in hello blade php file    lt  doctype html gt   lt html lang  en  gt   lt head gt       lt meta charset  UTF-8  gt   lt  head gt   lt body gt       content- gt page desc      lt  body gt   lt  html gt    For the following code you will get output as on image    So probably page desc in your case is not what you expect  But as you see it can be potential dangerous if someone uses for example    tag so you should probably in your route before assigning to blade template filter some tags  EDIT  I ve also tested it with putting the same code into database   Route  get      function                data   User  where  id      1 - gt first             return View  make  hello  - gt with  content    data              Output is exactly the same in this case  Edit2  I also don t know if Pages is your model or it s a vendor model  For example it can have accessor inside   public function getPageDescAttribute  value        return htmlspecialchars  value       and then when you get page desc attribute you will get modified page desc with htmlspecialchars  So if you are sure that data in database is with raw html  not escaped  you should look at this Pages class

User · Answer

I had the same issue  Thanks for the answers above  I solved my issue  If there are people facing the same problem  here is two way to solve it    You can use      news- gt body     You can use traditional php openning  It is not recommended  like   lt  php echo  string   gt    I hope it helps

User · Answer

Change your syntax from       to           As The Alpha said in a comment above  not an answer so I thought I d post   in Laravel 5  the        previously non-escaped output syntax  has changed to          Replace        with         and it should work

User · Answer

use this tag     description text

[php] Laravel Escaping All HTML in Blade Template

Examples related to php

Examples related to laravel

Examples related to laravel-4

Examples related to laravel-blade