亚洲国产日韩欧美一区二区三区,精品亚洲国产成人av在线,国产99视频精品免视看7,99国产精品久久久久久久成人热,欧美日韩亚洲国产综合乱

Verzeichnis suchen
AngularJS API Reference auto auto/service auto/service/$injector auto/service/$provide ng ng/directive ng/directive/a ng/directive/form ng/directive/input ng/directive/input[checkbox] ng/directive/input[date] ng/directive/input[dateTimeLocal] ng/directive/input[email] ng/directive/input[month] ng/directive/input[number] ng/directive/input[radio] ng/directive/input[text] ng/directive/input[time] ng/directive/input[url] ng/directive/input[week] ng/directive/ngApp ng/directive/ngBind ng/directive/ngBindHtml ng/directive/ngBindTemplate ng/directive/ngBlur ng/directive/ngChange ng/directive/ngChecked ng/directive/ngClass ng/directive/ngClassEven ng/directive/ngClassOdd ng/directive/ngClick ng/directive/ngCloak ng/directive/ngController ng/directive/ngCopy ng/directive/ngCsp ng/directive/ngCut ng/directive/ngDblclick ng/directive/ngDisabled ng/directive/ngFocus ng/directive/ngForm ng/directive/ngHide ng/directive/ngHref ng/directive/ngIf ng/directive/ngInclude ng/directive/ngInit ng/directive/ngKeydown ng/directive/ngKeypress ng/directive/ngKeyup ng/directive/ngList ng/directive/ngModel ng/directive/ngModelOptions ng/directive/ngMousedown ng/directive/ngMouseenter ng/directive/ngMouseleave ng/directive/ngMousemove ng/directive/ngMouseover ng/directive/ngMouseup ng/directive/ngNonBindable ng/directive/ngOpen ng/directive/ngPaste ng/directive/ngPluralize ng/directive/ngReadonly ng/directive/ngRepeat ng/directive/ngSelected ng/directive/ngShow ng/directive/ngSrc ng/directive/ngSrcset ng/directive/ngStyle ng/directive/ngSubmit ng/directive/ngSwitch ng/directive/ngTransclude ng/directive/ngValue ng/directive/script ng/directive/select ng/directive/textarea ng/filter ng/filter/currency ng/filter/date ng/filter/filter ng/filter/json ng/filter/limitTo ng/filter/lowercase ng/filter/number ng/filter/orderBy ng/filter/uppercase ng/function ng/function/angular.bind ng/function/angular.bootstrap ng/function/angular.copy ng/function/angular.element ng/function/angular.equals ng/function/angular.extend ng/function/angular.forEach ng/function/angular.fromJson ng/function/angular.identity ng/function/angular.injector ng/function/angular.isArray ng/function/angular.isDate ng/function/angular.isDefined ng/function/angular.isElement ng/function/angular.isFunction ng/function/angular.isNumber ng/function/angular.isObject ng/function/angular.isString ng/function/angular.isUndefined ng/function/angular.lowercase ng/function/angular.module ng/function/angular.noop ng/function/angular.toJson ng/function/angular.uppercase ng/object ng/object/angular.version ng/provider ng/provider/$animateProvider ng/provider/$compileProvider ng/provider/$controllerProvider ng/provider/$filterProvider ng/provider/$httpProvider ng/provider/$interpolateProvider ng/provider/$locationProvider ng/provider/$logProvider ng/provider/$parseProvider ng/provider/$rootScopeProvider ng/provider/$sceDelegateProvider ng/provider/$sceProvider ng/service ng/service/$anchorScroll ng/service/$animate ng/service/$cacheFactory ng/service/$compile ng/service/$controller ng/service/$document ng/service/$exceptionHandler ng/service/$filter ng/service/$http ng/service/$httpBackend ng/service/$interpolate ng/service/$interval ng/service/$locale ng/service/$location ng/service/$log ng/service/$parse ng/service/$q ng/service/$rootElement ng/service/$rootScope ng/service/$sce ng/service/$sceDelegate ng/service/$templateCache ng/service/$timeout ng/service/$window ng/type ng/type/$cacheFactory.Cache ng/type/$compile.directive.Attributes ng/type/$rootScope.Scope ng/type/angular.Module ng/type/form.FormController ng/type/ngModel.NgModelController ngAnimate ngAnimate/provider ngAnimate/provider/$animateProvider ngAnimate/service ngAnimate/service/$animate ngCookies ngCookies/service ngCookies/service/$cookies ngCookies/service/$cookieStore ngMessages ngMessages/directive ngMessages/directive/ngMessage ngMessages/directive/ngMessages ngMock ngMock/function ngMock/function/angular.mock.dump ngMock/function/angular.mock.inject ngMock/function/angular.mock.module ngMock/object ngMock/object/angular.mock ngMock/provider ngMock/provider/$exceptionHandlerProvider ngMock/service ngMock/service/$exceptionHandler ngMock/service/$httpBackend ngMock/service/$interval ngMock/service/$log ngMock/service/$timeout ngMock/type ngMock/type/angular.mock.TzDate ngMockE2E ngMockE2E/service ngMockE2E/service/$httpBackend ngResource ngResource/service ngResource/service/$resource ngRoute ngRoute/directive ngRoute/directive/ngView ngRoute/provider ngRoute/provider/$routeProvider ngRoute/service ngRoute/service/$route ngRoute/service/$routeParams ngSanitize ngSanitize/filter ngSanitize/filter/linky ngSanitize/service ngSanitize/service/$sanitize ngTouch ngTouch/directive ngTouch/directive/ngClick ngTouch/directive/ngSwipeLeft ngTouch/directive/ngSwipeRight ngTouch/service ngTouch/service/$swipe
Figuren

AngularJS: API: ng/provider/$sceDelegateProvider

$sceDelegateProvider

  1. - $sceDelegate
  2. - provider in module ng

$sceDelegateProvider提供者允許開發(fā)者配置$sceDelegate服務(wù)。它允許一個get/set 白名單和黑名單用于確保使用的獲取Angular模板的URL是安全的。參見$sceDelegateProvider.resourceUrlWhitelist 和 $sceDelegateProvider.resourceUrlBlacklist

對于這個服務(wù)在Angular中的一些細(xì)節(jié),請閱讀Strict Contextual Escaping (SCE)。

示例: 考慮以下情況

  • 你的應(yīng)用的url主機(jī)地址為http://myapp.example.com/
  • 但是你的一些模板存在其它域上,如http://srv01.assets.example.com/, http://srv02.assets.example.com/等。
  • 并且你有一個開放的重定向http://myapp.example.com/clickThru?...。

這種情況下的安全配置可能看起來像:

 angular.module('myApp', []).config(Function($sceDelegateProvider) {
   $sceDelegateProvider.resourceUrlWhitelist([
     // 允許相同來源資源載入。
     'self',
     // 允許從我們的assets域加載。注意 * 和 **之間的不同。
     'http://srv*.assets.example.com/**'
   ]);

   // 黑名單覆蓋白名單,這樣開放重定向在這會被阻止。
   $sceDelegateProvider.resourceUrlBlacklist([
     'http://myapp.example.com/clickThru**'
   ]);
 });

方法

  • resourceUrlWhitelist([whitelist]);

    Sets/Gets 信任資源URL們的白名單。

    參數(shù)

    參數(shù) 類型 詳述
    whitelist
    (可選)
    		 Array

    當(dāng)提供時,使用給出的值替換resourceUrlWhitelist。它必須是一個數(shù)組或null。這里會使用該數(shù)組的快照,所以數(shù)組未來的變化被忽略。

    注意: 一個空的白名單數(shù)組會阻止所有URL!

    返回值

    Array

    當(dāng)前設(shè)置的白名單數(shù)組。

    沒有白名單時的默認(rèn)值被簡單設(shè)為['self'],只允許相同來源的資源請求。

  • resourceUrlBlacklist([blacklist]);

    Sets/Gets 信任資源URL們的黑名單。

    參數(shù)

    參數(shù) 類型 詳述
    blacklist
    (可選)
    		 Array

    當(dāng)提供時,使用給出的值替換resourceUrlBlacklist。它必須是一個數(shù)組或null。這里會使用該數(shù)組的快照,所以數(shù)組未來的變化被忽略。

    黑名單典型的用法是用**阻止開放重定向(http://cwe.mitre.org/data/definitions/601.html)。
使用**處理您域中這些原本被信任的但實際上返回重定向域的內(nèi)容。
最后,正如我們之前所說的黑名單會覆蓋白名單。

    返回值

    Array

    當(dāng)前設(shè)置的黑名單數(shù)組。

    沒有白名單時的默認(rèn)值被簡單設(shè)為空數(shù)組(表示這里沒有黑名單)。

Vorheriger Artikel: N?chster Artikel: