insert html into ElementTree without parsing it

graeme.pietersz · Feb 24, 2014

I am building HTML pages using ElementTree.

I need to insert chunks of untrusted HTML into the page. I do not need or want to parse this, just insert it at a particular point as is.

The best solutions I can think of are rather ugly ones: manipulating the string created by tostring.

Is there a nicer way of doing this? Is it possible, for example, to customise how an element is converted to a string representation? I am open to using something else (e.g. lxml) if necessary.

Stefan Behnel · Mar 1, 2014

(e-mail address removed), 24.02.2014 10:45:

I am building HTML pages using ElementTree.
I need to insert chunks of untrusted HTML into the page. I do not need or want to parse this, just insert it at a particular point as is.

How would you want to find out if it can be safely inserted or not without
parsing it?

The best solutions I can think of are rather ugly ones: manipulating the string created by tostring.

Is there a nicer way of doing this? Is it possible, for example, to customise how an element is converted to a string representation? I am open to using something else (e.g. lxml) if necessary.

lxml has a tool to discard potentially unsafe content from HTML files:

http://lxml.de/lxmlhtml.html#cleaning-up-html

Stefan

elementtree	11	Aug 24, 2009
simple ElementTree based parser that allows entity definition map	0	Dec 4, 2013
Insert NULL into mySQL datetime	3	Dec 25, 2013
Parsing XML with ElementTree (unicode problem?)	13	Jul 23, 2007
insert method in ElementTree	2	Jul 16, 2006
insert html into html	24	Mar 30, 2010
Parsing an html line and pulling out only numbers that meet a certain criteria	2	Sep 12, 2013
Sticky Header - How Do I Make It Hide/Show on Scroll?	0	Sep 27, 2021

insert html into ElementTree without parsing it

graeme.pietersz

Stefan Behnel

Ask a Question

Similar Threads

Members online

Forum statistics

Latest Threads