#6531: 'escape' not propagated all the way down to _parseAttributes, inside
select()
----------------------------+-----------------------------------------------
Reporter: vampirefrog | Owner:
Type: Bug | Status: closed
Priority: Medium | Milestone: 1.2.x.x
Component: Helpers | Version: 1.2 Final
Severity: Normal | Resolution: wontfix
Keywords: | Php_version: n/a
Cake_version: |
----------------------------+-----------------------------------------------
Changes (by mark_story):
* status: new => closed
* resolution: => wontfix
Comment:
Even if you managed to get the quotes in a non html entity state, how did
you plan on handling the newlines in the output? Javascript Strings do not
accept newlines without escaping. This all seems slightly out of the Form
Helpers scope, it was not intended to created strings that can be used as
natively in Javascript. I would recommend more traditional javascript
string template approaches.
[[BR]]
[[BR]]
Furthermore passing escape on, opens the possibility for for html
corruption in existing applications. So that's a no go too :)
--
Ticket URL: <https://trac.cakephp.org/ticket/6531#comment:2>
CakePHP : The Rapid Development Framework for PHP <https://trac.cakephp.org/>
Cake is a rapid development framework for PHP which uses commonly known design
patterns like ActiveRecord, Association Data Mapping, Front Controller and MVC.
Our primary goal is to provide a structured framework that enables PHP users at
all levels to rapidly develop robust web applications, without any loss to
flexibility.
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"tickets cakephp" group.
To post to this group, send email to tickets-cakephp@googlegroups.com
To unsubscribe from this group, send email to
tickets-cakephp+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/tickets-cakephp?hl=en
-~----------~----~----~----~------~----~------~--~---
