cpython/Lib/html/__init__.py

"""
General functions for HTML manipulation.
"""


_escape_map = {ord('&'): '&amp;', ord('<'): '&lt;', ord('>'): '&gt;'}
_escape_map_full = {ord('&'): '&amp;', ord('<'): '&lt;', ord('>'): '&gt;',
                    ord('"'): '&quot;', ord('\''): '&#x27;'}

# NB: this is a candidate for a bytes/string polymorphic interface

def escape(s, quote=True):
    """
    Replace special characters "&", "<" and ">" to HTML-safe sequences.
    If the optional flag quote is true (the default), the quotation mark
    character (") is also translated.
    """
    if quote:
        return s.translate(_escape_map_full)
    return s.translate(_escape_map)
#2830: add html.escape() helper and move cgi.escape() uses in the standard library to it. It defaults to quote=True and also escapes single quotes, which makes casual use safer. The cgi.escape() interface is not touched, but emits a (silent) PendingDeprecationWarning. 2010-10-15 15:57:45 +00:00			`"""`
			`General functions for HTML manipulation.`
			`"""`


			`_escape_map = {ord('&'): '&', ord('<'): '<', ord('>'): '>'}`
			`_escape_map_full = {ord('&'): '&', ord('<'): '<', ord('>'): '>',`
			`ord('"'): '"', ord('\''): '''}`

			`# NB: this is a candidate for a bytes/string polymorphic interface`

			`def escape(s, quote=True):`
			`"""`
			`Replace special characters "&", "<" and ">" to HTML-safe sequences.`
			`If the optional flag quote is true (the default), the quotation mark`
			`character (") is also translated.`
			`"""`
			`if quote:`
			`return s.translate(_escape_map_full)`
			`return s.translate(_escape_map)`