O'Reilly logo

Programming Social Applications by Jonathan LeBlanc

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Putting It All Together

Now that we’ve explored some of the technologies used to secure third-party code on a site or container, let’s put them to good use and build out a tool to showcase how one of our tools, Caja, strips content from an original, mixed HTML/JavaScript file.

What we’ll do is set up a script that utilizes Caja’s web parsing mechanism to provide a side-by-side comparison of raw and rendered results from both the original content and the cajoled content. Our basic visual format will look like Figure 8-2.

Architecture of our Caja rendering application

Figure 8-2. Architecture of our Caja rendering application

We will set up an input to allow you to specify a file location and then load the file. Once loaded, the file content will be dumped immediately into the original rendered and raw source boxes since it doesn’t require any parsing. After that, the content will be run through the web cajoler script, and the resulting value will be dumped into the raw and rendered cajoled content boxes on the right.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required