WEB开发网
开发学院WEB开发ASP.NET Asp.net中如何过滤html,js,css代码 阅读

Asp.net中如何过滤html,js,css代码

 2008-10-01 17:25:29 来源:WEB开发网   
核心提示: #region/// 过滤html,js,CSS代码 /// <summary> /// 过滤html,js,css代码 /// </summary> /// <param name="html">参数传入</param> /// <

 #region/// 过滤html,js,CSS代码
     /// <summary>
     /// 过滤html,js,css代码
     /// </summary>
     /// <param name="html">参数传入</param>
     /// <returns></returns>
     public static string CheckStr(string html)
     {
       System.Text.RegularExPRessions.Regex regex1 = new System.Text.RegularExpressions.Regex(@"<script[\s\S]+</script *>", System.Text.RegularExpressions.RegexOptions.IgnoreCase);
       System.Text.RegularExpressions.Regex regex2 = new System.Text.RegularExpressions.Regex(@" href *= *[\s\S]*script *:", System.Text.RegularExpressions.RegexOptions.IgnoreCase);
       System.Text.RegularExpressions.Regex regex3 = new System.Text.RegularExpressions.Regex(@" no[\s\S]*=", System.Text.RegularExpressions.RegexOptions.IgnoreCase);
       System.Text.RegularExpressions.Regex regex4 = new System.Text.RegularExpressions.Regex(@"<iframe[\s\S]+</iframe *>", System.Text.RegularExpressions.RegexOptions.IgnoreCase);
       System.Text.RegularExpressions.Regex regex5 = new System.Text.RegularExpressions.Regex(@"<frameset[\s\S]+</frameset *>", System.Text.RegularExpressions.RegexOptions.IgnoreCase);
       System.Text.RegularExpressions.Regex regex6 = new System.Text.RegularExpressions.Regex(@"\<img[^\>]+\>", System.Text.RegularExpressions.RegexOptions.IgnoreCase);
       System.Text.RegularExpressions.Regex regex7 = new System.Text.RegularExpressions.Regex(@"</p>", System.Text.RegularExpressions.RegexOptions.IgnoreCase);
       System.Text.RegularExpressions.Regex regex8 = new System.Text.RegularExpressions.Regex(@"<p>", System.Text.RegularExpressions.RegexOptions.IgnoreCase);
       System.Text.RegularExpressions.Regex regex9 = new System.Text.RegularExpressions.Regex(@"<[^>]*>", System.Text.RegularExpressions.RegexOptions.IgnoreCase);
       html = regex1.Replace(html, ""); //过滤<script></script>标记
       html = regex2.Replace(html, ""); //过滤href=javascript: (<A>) 属性
       html = regex3.Replace(html, " _disibledevent="); //过滤其它控件的on...事件
       html = regex4.Replace(html, ""); //过滤iframe
       html = regex5.Replace(html, ""); //过滤frameset
       html = regex6.Replace(html, ""); //过滤frameset
       html = regex7.Replace(html, ""); //过滤frameset
       html = regex8.Replace(html, ""); //过滤frameset
       html = regex9.Replace(html, "");
       html = html.Replace(" ", "");
       html = html.Replace("</strong>", "");
       html = html.Replace("<strong>", "");
       return html;
     }
     #endregion
     #region  /// 过滤p /p代码
     /// <summary>
     /// 过滤p /p代码
     /// </summary>
     /// <param name="html">参数传入</param>
     /// <returns></returns>
     public static string InputStr(string html)
     {
       html = html.Replace(@"\<img[^\>]+\>", "");
       html = html.Replace(@"<p>", "");
       html = html.Replace(@"</p>", "");
       return html;
     }
     #endregion

  /// <summary>
     /// 截取字符串
     /// </summary>
     /// <param name="str"></param>
     /// <param name="length"></param>
     /// <returns></returns>
     protected string GetLength(string str, int length)
     {
       string strR = str;
       if (str.Length > length)
       {
         strR = str.Substring(0, length) + "...";
       }
       return strR;
     }


 

Tags:Asp net 如何

编辑录入:爽爽 [复制链接] [打 印]
赞助商链接