diff --git a/src/ngSanitize/sanitize.js b/src/ngSanitize/sanitize.js index 677b11d32fce..04eafa0d77dc 100644 --- a/src/ngSanitize/sanitize.js +++ b/src/ngSanitize/sanitize.js @@ -123,7 +123,7 @@ var START_TAG_REGEXP = /^<\s*([\w:-]+)((?:\s+[\w:-]+(?:\s*=\s*(?:(?:"[^"]*")|(?: BEGING_END_TAGE_REGEXP = /^<\s*\//, COMMENT_REGEXP = //g, CDATA_REGEXP = //g, - URI_REGEXP = /^((ftp|https?):\/\/|mailto:|#)/, + URI_REGEXP = /^((ftp|https?):\/\/|mailto:|tel:|#)/, NON_ALPHANUMERIC_REGEXP = /([^\#-~| |!])/g; // Match everything outside of normal chars and " (quote character) diff --git a/test/ngSanitize/sanitizeSpec.js b/test/ngSanitize/sanitizeSpec.js index b4fd8a2a5dff..150072d96249 100644 --- a/test/ngSanitize/sanitizeSpec.js +++ b/test/ngSanitize/sanitizeSpec.js @@ -188,7 +188,7 @@ describe('HTML', function() { expect(html).toEqual('
'); }); - describe('explicitly dissallow', function() { + describe('explicitly disallow', function() { it('should not allow attributes', function() { writer.start('div', {id:'a', name:'a', style:'a'}); expect(html).toEqual('
'); @@ -230,10 +230,11 @@ describe('HTML', function() { expect(isUri('https://abc')).toBeTruthy(); expect(isUri('ftp://abc')).toBeTruthy(); expect(isUri('mailto:me@example.com')).toBeTruthy(); + expect(isUri('tel:123-123-1234')).toBeTruthy(); expect(isUri('#anchor')).toBeTruthy(); }); - it('should not be UIR', function() { + it('should not be URI', function() { expect(isUri('')).toBeFalsy(); expect(isUri('javascript:alert')).toBeFalsy(); });