Hello,
Atm:
- TemplateFactoryEngineTypes associates EncoderHtml instance with
TemplateFactory ENGINEHTML and ENGINEXHTML
- TemplateFactory ENGINEHTML is used with all html files, even if xhtml
dtd is specified inside the file.
- AbstractTemplate.evaluateL10nTags uses EncoderHtml.encodeDefensive and
not EncoderHtml.encodeDefensive to convert string,
that is StringUtils.encodeHtmlDefensive
- this last method doesn't convert "<", "&", ">", "'" and """
So, for html files with xhtml dtd and for xhtml files, we can have
trouble when any of the above characters is present in a key's value,
e.g. double quote used in an attribute's value: then the end of the
value is not displayed.
Is there any reason against to used EncoderHtml.encodeDefensive in all
the cases.
Regards
Pierre
_______________________________________________
Rife-users mailing list
Rife-users@uwyn.com
http://www.uwyn.com/mailman/listinfo/rife-users
