Re: [tools] Generating XHTML-compliant Javascript with ValidatorTool - Christopher Schultz - org.apache.velocity.user

7 messages in org.apache.velocity.userRe: [tools] Generating XHTML-complian...

From	Sent On	Attachments
Christopher Schultz	Mar 5, 2012 5:15 pm
Nathan Bubna	Mar 6, 2012 6:46 am
Christopher Schultz	Mar 6, 2012 6:59 am
Greg Thomas	Mar 6, 2012 7:08 am
Christopher Schultz	Mar 6, 2012 8:08 am
Christopher Schultz	Mar 6, 2012 8:12 am
Nathan Bubna	Mar 6, 2012 8:56 am

Subject:	Re: [tools] Generating XHTML-compliant Javascript with ValidatorTool
From:	Christopher Schultz (chr...@christopherschultz.net)
Date:	Mar 6, 2012 8:08:40 am
List:	org.apache.velocity.user

Greg,

On 3/6/12 10:08 AM, Greg Thomas wrote:

On 6 March 2012 14:59, Christopher Schultz <chr...@christopherschultz.net> wrote:

It might be nice to (continue to) have CDATA optional. In that case, && would need to be escaped (along with other stuff, of course). I think we only need to escape & < and >.

Why not simply use StringEscapeUtils.escapeXml() in commons-lang ?

That's actually what I am using. It turns out we have an escapeJavascript method in the ValidatorTool class itself which replaces things like ' " \t \n \r etc. Obviously that's not appropriate and so I was just talking about the requirements, not necessarily the implementation.

My first stab at a patch ended up escaping everything including the <script> start tag and end tags. Oops. So the solution is somewhat more complex, but I'll get it.

Thanks, -chris

PS The escapeJavascript method in ValidatorTool should probably be replaced with a call to StringEscapeUtils.escapeJavascript (for VELTOOLS 2.0.x, which uses commons-lang 2.2 - 6 years old, by the way). For commons-lang 3.x, we need StringEscapeUtils.escapeEcmaScript.

	Start a set with this search
	Include this search in one of my sets
	Exclude this search from one of my sets