Display HTML with Blade: Escaping vs Raw Content
When displaying HTML using Blade, by default, it auto escapes any special characters to prevent XSS vulnerabilities. However, if you want to display raw HTML code, you can use the escape directive {!! !!}.
Problem:
You have a string containing HTML code that you want to display in your view using Blade. However, when using {{ $text }}, the output is a raw string instead of rendered HTML.
Solution:
To display HTML with Blade, you need to use the escape directive {!! $text !!}` instead of {{ $text }}. This will prevent the string from auto escaping and display the HTML code as intended.
Please note that using {!! !!} opens up your application to XSS vulnerabilities, so always ensure that the source of the HTML code is trusted.
The above is the detailed content of Blade Templating: Escaping vs. Raw HTML Output: When Should I Use `{!! !!}`?. For more information, please follow other related articles on the PHP Chinese website!
![[Web front-end] Node.js quick start](https://img.php.cn/upload/course/000/000/067/662b5d34ba7c0227.png)
