[ICE-5582] Ensure ResponseWriter based compat components do escaping properly - ICEsoft JIRA Issue Tracker

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 1.7
Fix Version/s: 2.0-Alpha3, 2.0.0
Component/s: ICE-Components
Labels:
None
Environment:
ICEfaces

Description

In ICEfaces 1.8 and before, we focused on direct-to-DOM rendering, and implemented text escaping in DOMUtils.escapeAnsi(). But in stock JSF, text escaping is provided by the ResponseWriter, in its writeText(-), writeAttribute(-) and writeURIAttribute(-) methods. All stock JSF components use those methods, so that everything is escaped by default. For the rare exception, like when outputText has escape=false, then the unescaped write(-) method is used.

When we discovered that our DOMResponseWriter was missing this behaviour, it was too late to change it, because users were already working around it by manually escaping the output. We didn't want to break applications by double escaping. But now, with ICEfaces 2, we're able to make fixes that break backwards compatibility, so in ~~ICE-3182~~, we'll be changing our ResponseWriter to follow the standard escaping rules.

So, our ResponseWriter based compat components should be altered to not use DOMUtils.escapeAnsi() any more, and just use the appropriate ResponseWriter APIs instead.

Issue Links

depends on

ICE-3182 DOMResponseWriter.writeText() escaping

Closed

Activity

Ascending order - Click to sort in descending order

Mark Collette created issue - 02/Apr/10 1:29 PM

Mark Collette made changes - 02/Apr/10 1:30 PM

Field	Original Value	New Value
Salesforce Case		[]
Fix Version/s		2.0-Alpha3 [ 10032 ]

Mark Collette made changes - 02/Apr/10 1:30 PM

Link

This issue depends on ~~ICE-3182~~ [ ~~ICE-3182~~ ]

Ken Fyten made changes - 02/Apr/10 1:33 PM

Assignee

Mark Collette [ mark.collette ]

Ken Fyten made changes - 03/May/10 12:05 PM

Salesforce Case		[]
Assignee	Mark Collette [ mark.collette ]	Greg Dick [ greg.dick ]

Repository	Revision	Date	User	Message
ICEsoft Public SVN Repository	#21376	Fri May 07 11:21:46 MDT 2010	greg.dick	~~ICE-5582~~ Use escaping versions of ResponseWriter API if necessary
				Files Changed
				MODIFY /icefaces/scratchpads/glimmer/compat/core/src/main/java/com/icesoft/faces/renderkit/dom_html_basic/OutputTextRenderer.java MODIFY /icefaces/scratchpads/glimmer/compat/core/src/main/java/com/icesoft/faces/renderkit/dom_html_basic/TextareaRenderer.java

Repository	Revision	Date	User	Message
ICEsoft Public SVN Repository	#21385	Mon May 10 15:13:30 MDT 2010	greg.dick	~~ICE-5582~~ Doesn't support escape attribute, however, always escape using writeText
				Files Changed
				MODIFY /icefaces/scratchpads/glimmer/compat/core/src/main/java/com/icesoft/faces/renderkit/dom_html_basic/TextareaRenderer.java

Hide

Permalink

Greg Dick added a comment - 14/May/10 5:20 PM

I fixed the outputTextRenderer to support the escape attribute and changed the textAreaRenderer to always use the writeText method. The rest of the compat components don't use the ResponseWriter API, but rather manipulate the DOM directly.

Show

Greg Dick added a comment - 14/May/10 5:20 PM I fixed the outputTextRenderer to support the escape attribute and changed the textAreaRenderer to always use the writeText method. The rest of the compat components don't use the ResponseWriter API, but rather manipulate the DOM directly.

Greg Dick made changes - 14/May/10 5:20 PM

Status	Open [ 1 ]	Resolved [ 5 ]
Resolution		Fixed [ 1 ]

Ken Fyten made changes - 28/May/10 2:49 PM

Issue Type	New Feature [ 2 ]	Improvement [ 4 ]
Salesforce Case		[]

Ken Fyten made changes - 21/Dec/10 2:47 PM

Fix Version/s

2.0.0 [ 10230 ]

Ken Fyten made changes - 03/Jan/11 4:18 PM

Status

Resolved [ 5 ]

Closed [ 6 ]

People

Assignee:

Greg Dick

Reporter:

Mark Collette

Votes:

0 Vote for this issue

Watchers:

0 Start watching this issue

Dates

Created:

02/Apr/10 1:29 PM

Updated:

03/Jan/11 4:18 PM

Resolved:

14/May/10 5:20 PM