At 13:37 -0400 5/5/02, Henri Yandell wrote: >You won't (i hope) find that in dbtags as it's not a db-related piece of >functionality. It's html/string-based, so I would expect it either in >a html-taglib(someday) or in string-taglib. > >You're right though that it should be in one of the taglibs. In the >absence of a full on html-formatting taglib, I'm going to stick: > >escapeHtml >unescapeHtml >escapeXml >unescapeXml > >into the String taglib. So your solution would be: > ><str:escapeHtml><sql:getColumn position="1"/></str:escapeHtml> > >Will let you know when it's added. > >Hen
As far as the database access and escaping stuff goes, you can use JSTL for both. The <sql:xxx> tags give you database access, and the <c:out> tag can perform XML encoding for <, >, &, ", and ', which also takes care of HTML encoding for you. -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
