Hi! Ok, answering to myself:
public String escapedAlt() {
return WOMessage.stringByEscapingHTMLAttributeValue(alt());
}
Time for naive question: shouldn't WO escape all the "unknown"
attributes by default? This may lead to very serious security
problems... (HTML injection, xss, etc)
Yours Miguel Arroz On 2007/09/06, at 17:54, Miguel Arroz wrote:
Hi!I want to use the "alt" tag with WOImage. It appears to not be a problem, as the alt="blabla" is added to the code.The problem is that the text is not correctly escaped. If I add this text as the alt text:Text with commas. "Text with commas". Text with commas. I get this:<img alt="Text with commas. "Text with="with" commas".="commas"." Text="Text" with="with" commas."="commas."" src="imageURL"></img>How can I do this with correctly escaped text? Yours Miguel Arroz Miguel Arroz http://www.terminalapp.net http://www.ipragma.com _______________________________________________ Do not post admin requests to the list. They will be ignored. Webobjects-dev mailing list ([email protected]) Help/Unsubscribe/Update your Subscription:http://lists.apple.com/mailman/options/webobjects-dev/arroz% 40guiamac.comThis email sent to [EMAIL PROTECTED]
Miguel Arroz http://www.terminalapp.net http://www.ipragma.com
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Do not post admin requests to the list. They will be ignored. Webobjects-dev mailing list ([email protected]) Help/Unsubscribe/Update your Subscription: http://lists.apple.com/mailman/options/webobjects-dev/archive%40mail-archive.com This email sent to [EMAIL PROTECTED]
