Feedback on: Creating 'Encoded' Name & Value Pairs, Tuesday May 08, 2007 at 13:01:40

You are here: irt.org | About | Feedback | 4545 [ previous next ]

Feedback on:
Creating 'Encoded' Name & Value Pairs

Sent by
vd on Tuesday May 08, 2007 at 13:01:40

Worth:
Worth reading

Length:
Just right

Technical:
Not technical enough

Comments:
Unless I miss it, could you also cover the encoding of data before written out to the page. This is to prevent cross-site scripting. This includes 2 types:
1) Data written for rendering
2) Data written inside form value.

The item (2) needs to have the exact data if submit the form again. Also, javascript popup such as validation also must show correct user's perceived value, not encoded value.

In .net, there's HttpUtility.HtmlEncode function. I don't know one for Java.

Other feedback on 'Creating 'Encoded' Name & Value Pairs' - show all

• Creating 'Encoded' Name & Value Pairs - vd May 08, 2007 at 13:01:40
• Creating 'Encoded' Name & Value Pairs - Vrushali October 08, 2002 at 02:54:24
• Creating 'Encoded' Name & Value Pairs - John McGuire January 20, 2002 at 04:08:52
• Creating 'Encoded' Name & Value Pairs - Chalon Clemons October 17, 2001 at 14:17:16
• Creating 'Encoded' Name & Value Pairs - JackFunkMasterFunkJack April 03, 2001 at 08:40:20
• Creating 'Encoded' Name & Value Pairs - Mark McVicker January 14, 2001 at 17:10:59
• Creating 'Encoded' Name & Value Pairs - patel manisha July 12, 2000 at 15:24:33
• Creating 'Encoded' Name & Value Pairs - Warren Ward April 24, 2000 at 15:11:59
• Creating 'Encoded' Name & Value Pairs - Vincent January 12, 2000 at 17:56:50
• Creating 'Encoded' Name & Value Pairs - secURLinx September 22, 1999 at 00:19:24
• Creating 'Encoded' Name & Value Pairs - maurice mthombeni July 30, 1999 at 02:16:39
• Creating 'Encoded' Name & Value Pairs - Jak Kulas July 25, 1999 at 12:59:50
• Creating 'Encoded' Name & Value Pairs - JASON ROSEN April 20, 1999 at 19:37:58
• Creating 'Encoded' Name & Value Pairs - RL Crawford April 15, 1999 at 11:29:07
• Creating 'Encoded' Name & Value Pairs - Robert Watson April 15, 1999 at 09:36:20
• Creating 'Encoded' Name & Value Pairs - Marc Campforts April 15, 1999 at 03:05:41
• Creating 'Encoded' Name & Value Pairs - John Horne April 14, 1999 at 11:44:53
• Creating 'Encoded' Name & Value Pairs - Lasse Johansson April 14, 1999 at 09:58:40
• Creating 'Encoded' Name & Value Pairs - Don Ellis April 13, 1999 at 09:31:13
• Creating 'Encoded' Name & Value Pairs - Nick Chase April 09, 1999 at 16:32:16

©2018 Martin Webb