Format and remove 04.3.md spaces

vcaesar · vcaesar · commit fef2351da398 · 2017-06-10T11:49:09.000+08:00
diff --git a/zh/04.3.md b/zh/04.3.md
@@ -16,9 +16,9 @@
 我们看4.1小节的例子
 ```Go
 
-	fmt.Println("username:", template.HTMLEscapeString(r.Form.Get("username"))) //输出到服务器端
-	fmt.Println("password:", template.HTMLEscapeString(r.Form.Get("password")))
-	template.HTMLEscape(w, []byte(r.Form.Get("username"))) //输出到客户端
+fmt.Println("username:", template.HTMLEscapeString(r.Form.Get("username"))) //输出到服务器端
+fmt.Println("password:", template.HTMLEscapeString(r.Form.Get("password")))
+template.HTMLEscape(w, []byte(r.Form.Get("username"))) //输出到客户端
 ```
 如果我们输入的username是`<script>alert()</script>`,那么我们可以在浏览器上面看到输出如下所示：
 
@@ -29,10 +29,10 @@
 Go的html/template包默认帮你过滤了html标签，但是有时候你只想要输出这个`<script>alert()</script>`看起来正常的信息，该怎么处理？请使用text/template。请看下面的例子：
 ```Go
 
-	import "text/template"
-	...
-	t, err := template.New("foo").Parse(`{{define "T"}}Hello, {{.}}!{{end}}`)
-	err = t.ExecuteTemplate(out, "T", "<script>alert('you have been pwned')</script>")
+import "text/template"
+...
+t, err := template.New("foo").Parse(`{{define "T"}}Hello, {{.}}!{{end}}`)
+err = t.ExecuteTemplate(out, "T", "<script>alert('you have been pwned')</script>")
 ```
 输出
 
@@ -41,10 +41,10 @@ Go的html/template包默认帮你过滤了html标签，但是有时候你只想
 或者使用template.HTML类型
 ```Go
 
-	import "html/template"
-	...
-	t, err := template.New("foo").Parse(`{{define "T"}}Hello, {{.}}!{{end}}`)
-	err = t.ExecuteTemplate(out, "T", template.HTML("<script>alert('you have been pwned')</script>"))
+import "html/template"
+...
+t, err := template.New("foo").Parse(`{{define "T"}}Hello, {{.}}!{{end}}`)
+err = t.ExecuteTemplate(out, "T", template.HTML("<script>alert('you have been pwned')</script>"))
 ```
 输出
 
@@ -55,10 +55,10 @@ Go的html/template包默认帮你过滤了html标签，但是有时候你只想
 转义的例子：
 ```Go
 
-	import "html/template"
-	...
-	t, err := template.New("foo").Parse(`{{define "T"}}Hello, {{.}}!{{end}}`)
-	err = t.ExecuteTemplate(out, "T", "<script>alert('you have been pwned')</script>")
+import "html/template"
+...
+t, err := template.New("foo").Parse(`{{define "T"}}Hello, {{.}}!{{end}}`)
+err = t.ExecuteTemplate(out, "T", "<script>alert('you have been pwned')</script>")
 ```
 转义之后的输出：
 
