--- Fredrik Lindgren
<[EMAIL PROTECTED]> wrote:
> Hi,
> I've spent some time going through the current
> webwork2 UI implementation
> trying to find out if escaping of special characters
> ('<,>,",',&) is done.
> In webwork 1.3, at least the jsp UI templates will
> perform escaping since
> they use the property tag which escapes the values
> as long as you don't
> tell it not to. Since I'm not familiar with velocity
> it is harder for me to
> verify that the escaping is done by the velocity
> templates as well. If
> escaping is in fact done in webwork2, please explain
> how.
AFAIK, velocity does not escaping. it just uses
whatever comes by.
I had to write event handler for velocity ( on
refenrence insertion ) which did escaping for me
( Escape utilityobject lives in anakia )
And I intendet to use velocity output for further
trasformation via xslt...
---%<-------------
/**
* escape xml chars on the fly
*
* @param reference
* @param value
* @return
*/
public Object referenceInsert( String
reference, Object value )
{
if( value != null )
{
return Escape.getText(
value.toString() );
}
return value;
}
---%<-------------
regards,
=====
----[ Konstantin Pribluda ( ko5tik ) ]----------------
Zu Verstärkung meines Teams suche ich ab Sofort einen
Softwareentwickler[In] für die Festanstellung.
Arbeitsort: Mainz
Skills: Programieren, Kentnisse in OpenSource-Bereich
----[ http://www.pribluda.de ]------------------------
__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com
-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
_______________________________________________
Opensymphony-webwork mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/opensymphony-webwork
