You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@myfaces.apache.org by "Blake Sullivan (JIRA)" <de...@myfaces.apache.org> on 2009/11/30 19:05:20 UTC

[jira] Created: (TRINIDAD-1647) HTML Escapes writes out characters illegal in HTML

HTML Escapes writes out characters illegal in HTML
--------------------------------------------------

                 Key: TRINIDAD-1647
                 URL: https://issues.apache.org/jira/browse/TRINIDAD-1647
             Project: MyFaces Trinidad
          Issue Type: Bug
         Environment: All
            Reporter: Blake Sullivan


The HTML specification disallows certain code points from appearing in HTML files (XML has essentially the same list, minus the high ISO characters) as specified in http://www.w3.org/TR/REC-html40/sgml/sgmldecl.html. The Trinidad HtmlEscapes utilities allow the low control characters and the high characters that are technically outside of Unicode to be output. This causes problems if the content is validated.

The fix is to use numeric character references such as &#1; rather than outputting code point 1 directly. In addition, Internet Explorer has a bug where &#0; is output as "&#0;" so it is preferable to suppress this character rather then outputting it.


-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Commented: (TRINIDAD-1647) HTML Escapes writes out characters illegal in HTML

Posted by "Jeanne Waldman (JIRA)" <de...@myfaces.apache.org>.

    [ https://issues.apache.org/jira/browse/TRINIDAD-1647?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12805789#action_12805789 ] 

Jeanne Waldman commented on TRINIDAD-1647:
------------------------------------------

See TRINIDAD-1655 Fix to JIRA-1647 introduced bug where HTMLEscapes._writeText isn't paying attention to startIndex
This is needed as well for any backporting.

> HTML Escapes writes out characters illegal in HTML
> --------------------------------------------------
>
>                 Key: TRINIDAD-1647
>                 URL: https://issues.apache.org/jira/browse/TRINIDAD-1647
>             Project: MyFaces Trinidad
>          Issue Type: Bug
>         Environment: All
>            Reporter: Blake Sullivan
>            Assignee: Blake Sullivan
>             Fix For: 1.2.13-core 
>
>         Attachments: datePicker.gif, HTMLEscapes.patch, JIRA_1647_1_2_12_2.patch
>
>   Original Estimate: 24h
>  Remaining Estimate: 24h
>
> The HTML specification disallows certain code points from appearing in HTML files (XML has essentially the same list, minus the high ISO characters) as specified in http://www.w3.org/TR/REC-html40/sgml/sgmldecl.html. The Trinidad HtmlEscapes utilities allow the low control characters and the high characters that are technically outside of Unicode to be output. This causes problems if the content is validated.
> The fix is to use numeric character references such as &#1; rather than outputting code point 1 directly. In addition, Internet Explorer has a bug where &#0; is output as "&#0;" so it is preferable to suppress this character rather then outputting it.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Resolved: (TRINIDAD-1647) HTML Escapes writes out characters illegal in HTML

Posted by "Jeanne Waldman (JIRA)" <de...@myfaces.apache.org>.

     [ https://issues.apache.org/jira/browse/TRINIDAD-1647?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Jeanne Waldman resolved TRINIDAD-1647.
--------------------------------------

       Resolution: Fixed
    Fix Version/s: 1.2.13-core 

> HTML Escapes writes out characters illegal in HTML
> --------------------------------------------------
>
>                 Key: TRINIDAD-1647
>                 URL: https://issues.apache.org/jira/browse/TRINIDAD-1647
>             Project: MyFaces Trinidad
>          Issue Type: Bug
>         Environment: All
>            Reporter: Blake Sullivan
>             Fix For: 1.2.13-core 
>
>         Attachments: JIRA_1647_1_2_12_2.patch
>
>   Original Estimate: 24h
>  Remaining Estimate: 24h
>
> The HTML specification disallows certain code points from appearing in HTML files (XML has essentially the same list, minus the high ISO characters) as specified in http://www.w3.org/TR/REC-html40/sgml/sgmldecl.html. The Trinidad HtmlEscapes utilities allow the low control characters and the high characters that are technically outside of Unicode to be output. This causes problems if the content is validated.
> The fix is to use numeric character references such as &#1; rather than outputting code point 1 directly. In addition, Internet Explorer has a bug where &#0; is output as "&#0;" so it is preferable to suppress this character rather then outputting it.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.