Tim Fennell wrote:
> I'm not sure this is a bug. I'm not saying it isn't, I'm just not
> sure it is either. You are supplying recordName to the message
> right? If we escaped all the parameters to a message then you would
> never be able to supply an HTML character in a message. If you
> wanted to write (god knows why, but whatever):
> new SimpleMessage("Error: {0}", "You sir are a <bold>moron</bold>")
> you wouldn't be able to.
Yeah, I agree, I could think of good reasons why you wouldn't want to do
it all the time - which is why I asked rather than just logging a bug ;-)
> The only things that the validation errors encode by default (I
> believe) are the user input which isn't supplied by the progammer,
> but directly by the user.
That makes perfect sense.
> We could, to make life easier, provide an optional method or
> something to switch on encoding, but I don't think we'd want to do it
> all the time. Thoughts?
Or just provide an easy way of doing the encoding, so that you can wrap
just the appropriate parameters when you create the message.
The main place this comes up is in custom validation code, where you are
doing stuff 'by hand' as it were.
--
Alan Burlison
--
-------------------------------------------------------------------------
Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW!
Studies have shown that voting for your favorite open source project,
along with a healthy diet, reduces your potential for chronic lameness
and boredom. Vote Now at http://www.sourceforge.net/community/cca08
_______________________________________________
Stripes-users mailing list
Stripes-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/stripes-users
