You are viewing a plain text version of this content. The canonical link for it is here.
Posted to pluto-dev@portals.apache.org by "David DeWolf (JIRA)" <pl...@jakarta.apache.org> on 2005/03/16 02:00:21 UTC

[jira] Resolved: (PLUTO-115) introduction.jsp violates JSP spec

     [ http://issues.apache.org/jira/browse/PLUTO-115?page=history ]
     
David DeWolf resolved PLUTO-115:
--------------------------------

     Resolution: Fixed
    Fix Version: 1.0.1-rc3

Fixed. Thanks

> introduction.jsp violates JSP spec
> ----------------------------------
>
>          Key: PLUTO-115
>          URL: http://issues.apache.org/jira/browse/PLUTO-115
>      Project: Pluto
>         Type: Bug
>   Components: portlets-testsuite
>     Versions: 1.0.1-rc2
>     Reporter: Eric Dalquist
>      Fix For: 1.0.1-rc3

>
> On line 36 of introduction.jsp in the test suite a " exists inside of a tag attribute:
> <portlet:actionURL secure="<%=renderRequest.isSecure()?"True":"False"%>" var="url">
> This causes the WebLogic JSP parser to fail.
> --------------------------------------------------------------------------------
> Quoting is described in section 1.6 of the jsp spec:
> Quotation is done consistently regardless of whether the attribute value is a literal or a request-time attribute expression. Quoting can be used in attribute values regardless of whether they are delimited using single or double quotes. It is only required as described below.
> A ‘ is quoted as \’. This is required within a single quote-delimited attribute value.
> A “ is quoted as \”. This is required within a double quote-delimited attribute value.
> A \ is quoted as \\
> A %> is quoted as %\>
> A <% is quoted as <\%
> The entities &apos; and &quot; are available to describe single and double quotes.
> Examples
> The following line shows an illegal attribute values.
> • <mytags:tag value="<%= "hi!" %>" />
> The next lines are all legal quotations.
> • <%= "Joe said %/>" %>
> • <%= "Joe said %\>" %>
> • <% String joes_statement = "hi!"; %>
> • <%= "Joe said \"" + joes_statement + "\"." %>
> • <x:tag value='<%="Joe said \\"" + joes_statement + "\\"."%>'/>
> • <x:tag value='<%= "hi!" %>' />
> • <x:tag value="<%= \"hi!\" %>" />
> • <x:tag value='<%= \"name\" %>' />
> • <x:tag value="<%= \"Joe said 'hello'\" %>"/> 
> --------------------------------------------------------------------------------
> An easy fix to avoid the whole problem would be to do:
> <portlet:actionURL secure="<%=Boolean.toString(renderRequest.isSecure())" var="url">
> It also makes the intent of the code much more readable than a terinery expression.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://issues.apache.org/jira/secure/Administrators.jspa
-
If you want more information on JIRA, or have a bug to report see:
   http://www.atlassian.com/software/jira