API returns js and/or html in json responses


Well-Known Member
Jul 2, 2006
I was wondering if there is a way to get rid of the js and html from a json response.
I don't believe it's a very good practice to let some js/html code in an answer that's supposed to be simple.
Can we separate that in a 'raw' key at least, as it's already done with other messages ?
I am expecting statusmsg to be a simple text so I can return it directly to a user.

An example is here, at the bottom of the page, the json response (the same is returned in a production environment):
SuspendAccount < SoftwareDevelopmentKit < TWiki

{'result': [{'status': 1,
'statusmsg': '<script>if (window.clear_ui_status) clear_ui_status();</script>.....}]}


Well-Known Member
May 24, 2009
Austin, TX
cPanel Access Level
Root Administrator
Able to replicate:

[email protected] [~]# php test.php
object(SimpleXMLElement)#2 (1) {
object(SimpleXMLElement)#3 (2) {
string(1) "1"
string(750) "<script>if (window.clear_ui_status) clear_ui_status();</script>
Changing Shell to /bin/false...Changing shell for kyle.
Warning: "/bin/false" is not listed in /etc/shells
Shell changed.
Locking Password...Locking password for user kyle.
passwd: Success
1Suspending email account logins for kyle.dev.box.net .... Done
Suspending email account logins for kyle.box.net .... Done
Suspending mysql users
Using Universal Quota Support (quota=0)
Suspended document root /home/kyle/public_html
Using Universal Quota Support (quota=0)
Updating ftp passwords for kyle
Ftp password files updated.
Ftp vhost passwords synced
kyle's account has been suspended

I'd recommend just using the status returned and creating your own statusmsg otherwise you can strip <script>.*?</script> using preg_replace in php or =~ s///g in perl