Mercurial > dive4elements > gnv-client
comparison gnv/src/main/java/de/intevation/gnv/action/WMSAction.java @ 705:f550bd27a3f1
Html characters in strings inserted by the user are quoted (issue221).
gnv/trunk@969 c6561f87-3c4e-4783-a992-168aeb5c3f6f
| author | Ingo Weinzierl <ingo.weinzierl@intevation.de> |
|---|---|
| date | Thu, 22 Apr 2010 12:58:44 +0000 |
| parents | 254f062e334b |
| children | d91ffd0e8239 |
comparison
equal
deleted
inserted
replaced
| 704:ae946acba005 | 705:f550bd27a3f1 |
|---|---|
| 92 while (it.hasNext()) { | 92 while (it.hasNext()) { |
| 93 String name = it.next().getName(); | 93 String name = it.next().getName(); |
| 94 String[] values = request.getParameterValues(name); | 94 String[] values = request.getParameterValues(name); |
| 95 String value = request.getParameter(name); | 95 String value = request.getParameter(name); |
| 96 InputParameter ip = new DefaultInputParameter(name, | 96 InputParameter ip = new DefaultInputParameter(name, |
| 97 values); | 97 encode(values)); |
| 98 ips.add(ip); | 98 ips.add(ip); |
| 99 | 99 |
| 100 if (value != null) { | 100 if (value != null) { |
| 101 ++params; | 101 ++params; |
| 102 diagrammOptions.setValue(name, value); | 102 diagrammOptions.setValue(name, encode(value)); |
| 103 } | 103 } |
| 104 } | 104 } |
| 105 | 105 |
| 106 if (params > 0) { | 106 if (params > 0) { |
| 107 sm.setDiagrammOptions(diagrammOptions); | 107 sm.setDiagrammOptions(diagrammOptions); |
| 176 e.getMessage()); | 176 e.getMessage()); |
| 177 | 177 |
| 178 return super.getExceptionForward(mapping); | 178 return super.getExceptionForward(mapping); |
| 179 } | 179 } |
| 180 } | 180 } |
| 181 | |
| 182 } | 181 } |
| 183 // vim:set ts=4 sw=4 si et sta sts=4 fenc=utf-8 : | 182 // vim:set ts=4 sw=4 si et sta sts=4 fenc=utf-8 : |