Feedback on: Creating 'Encoded' Name & Value Pairs

irt.org | About | Feedback | 4545 [ previous next ]

Feedback on:
Creating 'Encoded' Name & Value Pairs

Sent by
vd on Tuesday May 08, 2007 at 13:01:40

Worth:
Worth reading

Length:
Just right

Technical:
Not technical enough

Comments:
Unless I miss it, could you also cover the encoding of data before written out to the page. This is to prevent cross-site scripting. This includes 2 types:
1) Data written for rendering
2) Data written inside form value.

The item (2) needs to have the exact data if submit the form again. Also, javascript popup such as validation also must show correct user's perceived value, not encoded value.

In .net, there's HttpUtility.HtmlEncode function. I don't know one for Java.

Other feedback on 'Creating 'Encoded' Name & Value Pairs' - show all

Creating 'Encoded' Name & Value Pairs - vd Tuesday May 08, 2007 at 13:01:40
Creating 'Encoded' Name & Value Pairs - Vrushali October 08, 2002 at 02:54:24:
Creating 'Encoded' Name & Value Pairs - John McGuire January 20, 2002 at 04:08:52:
Creating 'Encoded' Name & Value Pairs - Chalon Clemons October 17, 2001 at 14:17:16:
Creating 'Encoded' Name & Value Pairs - JackFunkMasterFunkJack 08:40:20 4/03/01
Creating 'Encoded' Name & Value Pairs - Mark McVicker 17:10:59 1/14/01
Creating 'Encoded' Name & Value Pairs - patel manisha 15:24:33 7/12/00
Creating 'Encoded' Name & Value Pairs - Warren Ward 15:11:59 4/24/00
Creating 'Encoded' Name & Value Pairs - Vincent 17:56:50 1/12/00
Creating 'Encoded' Name & Value Pairs - secURLinx 00:19:24 9/22/99
Creating 'Encoded' Name & Value Pairs - maurice mthombeni 02:16:39 7/30/99
Creating 'Encoded' Name & Value Pairs - Jak Kulas 12:59:50 7/25/99
Creating 'Encoded' Name & Value Pairs - JASON ROSEN 19:37:58 4/20/99
Creating 'Encoded' Name & Value Pairs - RL Crawford 11:29:07 4/15/99
Creating 'Encoded' Name & Value Pairs - Robert Watson 09:36:20 4/15/99
Creating 'Encoded' Name & Value Pairs - Marc Campforts 03:05:41 4/15/99
Creating 'Encoded' Name & Value Pairs - John Horne 11:44:53 4/14/99
Creating 'Encoded' Name & Value Pairs - Lasse Johansson 09:58:40 4/14/99
Creating 'Encoded' Name & Value Pairs - Don Ellis 09:31:13 4/13/99
Creating 'Encoded' Name & Value Pairs - Nick Chase 16:32:16 4/09/99

What's New

How to do the impossible with Google Gears

Out and About

Last Updated: 21st December 2007. Maintained by: Martin Webb
irt.org liability, trademark, document use, privacy statement and software licensing rules apply.