I am facing exactly the same situation when trying to use jsReport with Angular 2.
the possible workaround that I found for now is-
remember that your report contains <script> tags, and for security issue angular won't let you inject scripts in DOM like this. you can use DomSanitizer to ByPass the security and then put the response in an iFrame [DomSanitizer - https://angular.io/guide/security#bypass-security-apis]
hope this helps.