Author: kkolinko Date: Sun May 13 00:17:51 2012 New Revision: 1337746 URL: http://svn.apache.org/viewvc?rev=1337746&view=rev Log: Merged revision 1337745 from tomcat/trunk: Pass correct URL to encodeURL() call and safeguard it later.
Modified: tomcat/tc7.0.x/trunk/ (props changed) tomcat/tc7.0.x/trunk/webapps/examples/WEB-INF/classes/SessionExample.java Propchange: tomcat/tc7.0.x/trunk/ ------------------------------------------------------------------------------ Merged /tomcat/trunk:r1337745 Modified: tomcat/tc7.0.x/trunk/webapps/examples/WEB-INF/classes/SessionExample.java URL: http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/webapps/examples/WEB-INF/classes/SessionExample.java?rev=1337746&r1=1337745&r2=1337746&view=diff ============================================================================== --- tomcat/tc7.0.x/trunk/webapps/examples/WEB-INF/classes/SessionExample.java (original) +++ tomcat/tc7.0.x/trunk/webapps/examples/WEB-INF/classes/SessionExample.java Sun May 13 00:17:51 2012 @@ -129,7 +129,7 @@ public class SessionExample extends Http out.println("</form>"); out.print("<p><a href=\""); - out.print(response.encodeURL("SessionExample?dataname=foo&datavalue=bar")); + out.print(HTMLFilter.filter(response.encodeURL("SessionExample?dataname=foo&datavalue=bar"))); out.println("\" >URL encoded </a>"); out.println("</body>"); --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org