|
|
|
|
11-05-2009, 01:44 PM
|
#1 |
Quotes and EL
In my Tomcat 6.0.20 container, I have a form value that works great
except if the user enters quotes in the form input. Anything in quotes wont show up. For example if they enter: Here is the "info" The form value would only show: Here is the Input example that wont work with quotes: <input type="text" name="city" value="${dataBean.city}" /> If I use tick instead of quotes it works and shows anything in quotes: <input type="text" name="city" value='${dataBean.city}' /> Please advise why this is happening and if there is an alternate solution to this issue? francan |
|
|
|
11-05-2009, 02:09 PM
|
#2 |
|
Posts: n/a
|
Re: Quotes and EL
francan <> wrote:
>In my Tomcat 6.0.20 container, I have a form value that works great >except if the user enters quotes in the form input. Anything in quotes >wont show up. >For example if they enter: Here is the "info" >The form value would only show: Here is the >Input example that wont work with quotes: ><input type="text" name="city" value="${dataBean.city}" /> >If I use tick instead of quotes it works and shows anything in quotes: ><input type="text" name="city" value='${dataBean.city}' /> >Please advise why this is happening and if there is an alternate >solution to this issue? It's happening because the first quote in the dataBean.city value terminates the field. For example, if dataBean.city contains abc"def"gh Then the line above will result in this HTML: <input type="text" name="city" value="abc"def"gh" /> So the browser sees that value is abc, then there's some extraneous garbage, which it ignores. I haven't been able to find a way to escape quote marks within a field like this, so I think the only way out for you is to (for example) use double quotes in your HTML, as you're doing, then have your dataBean change all double quotes in the value of "city" to single quote marks. That would avoid conflicts in your HTML, though it would show your user something that's not exactly what they entered sometimes. -- Tim Slattery http://members.cox.net/slatteryt Tim Slattery |
|
|
|
11-06-2009, 03:06 AM
|
#3 |
|
Posts: n/a
|
Re: Quotes and EL
On 2009-11-05 09:09:00 -0500, Tim Slattery <> said:
> francan <> wrote: > >> In my Tomcat 6.0.20 container, I have a form value that works great >> except if the user enters quotes in the form input. Anything in quotes >> wont show up. >> For example if they enter: Here is the "info" >> The form value would only show: Here is the > >> Input example that wont work with quotes: >> <input type="text" name="city" value="${dataBean.city}" /> > >> If I use tick instead of quotes it works and shows anything in quotes: >> <input type="text" name="city" value='${dataBean.city}' /> > >> Please advise why this is happening and if there is an alternate >> solution to this issue? > > It's happening because the first quote in the dataBean.city value > terminates the field. For example, if dataBean.city contains > > abc"def"gh > > Then the line above will result in this HTML: > > <input type="text" name="city" value="abc"def"gh" /> > > So the browser sees that value is abc, then there's some extraneous > garbage, which it ignores. > > I haven't been able to find a way to escape quote marks within a field > like this, so I think the only way out for you is to (for example) use > double quotes in your HTML, as you're doing, then have your dataBean > change all double quotes in the value of "city" to single quote marks. > That would avoid conflicts in your HTML, though it would show your > user something that's not exactly what they entered sometimes. <c  ut value="${dataBean.city}" escapeXml="true" /> is your friend here.There's no built-in way to do it in-line in an EL expression, but you could expose the same kind of escaping as an EL function in a custom taglib, at which point you'd also be able to write ${mytags:escape(dataBean.city)} or what have you. -o Owen Jacobson |
|
|
|
11-10-2009, 06:30 PM
|
#4 |
|
Posts: n/a
|
Re: Quotes and EL
Owen Jacobson a écrit :
> On 2009-11-05 09:09:00 -0500, Tim Slattery <> said: > > <c ut value="${dataBean.city}" escapeXml="true" /> is your friend here.> > There's no built-in way to do it in-line in an EL expression, but you > could expose the same kind of escaping as an EL function in a custom > taglib, at which point you'd also be able to write > ${mytags:escape(dataBean.city)} or what have you. > There is one such standard function : ${fn:escapeXml($dataBean.city)} see http://java.sun.com/products/jsp/jst...apeXml.fn.html JB. Jean-Baptiste Nizet |
|
|
|
11-10-2009, 11:31 PM
|
#5 |
|
Posts: n/a
|
Re: Quotes and EL
On 2009-11-10 13:30:52 -0500, Jean-Baptiste Nizet
<> said: > Owen Jacobson a écrit : >> On 2009-11-05 09:09:00 -0500, Tim Slattery <> said: >> >> <c ut value="${dataBean.city}" escapeXml="true" /> is your friend here.>> >> There's no built-in way to do it in-line in an EL expression, but you >> could expose the same kind of escaping as an EL function in a custom >> taglib, at which point you'd also be able to write >> ${mytags:escape(dataBean.city)} or what have you. >> > > There is one such standard function : > ${fn:escapeXml($dataBean.city)} > > see http://java.sun.com/products/jsp/jst...apeXml.fn.html > > JB. Well, now, that's handy. Thanks! -o Owen Jacobson |
|
|
 |
| Thread Tools | Search this Thread |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| BEST Auto Insurance quotes for YOUR state. | ireneaveline | Wireless Networking | 0 | 09-07-2007 04:06 PM |
| Good quotes: From Celebrities | x@y | Computer Support | 2 | 04-03-2007 06:21 AM |
| PHP double quotes inside double quotes | MSB | Computer Support | 11 | 10-21-2006 02:09 PM |
| Quicken quotes | Mike X | Computer Support | 4 | 05-03-2004 01:09 AM |
