user568259
Reputation: 343
Is it necessary to html encode right angle brackets?
I'm adding some meta description data to my header like so:
HtmlMeta meta = new HtmlMeta();
meta.Name = "description";
meta.Content = description; // this is unencoded
page.Header.Controls.Add(meta);
And .net helpfully encodes things like & and <, but not >. Now, I can't imagine that this would be an oversight, so I conclude that it's unnecessary to escape them. But before I go back to the client with that answer, it would be nice to get confirmation by Some Strangers From The Intarwebs first :)
Upvotes: 3
Views: 1859
Answers (1)
Diadistis
Reputation: 12174
According to the XML specification > is indeed valid for attributes. Only <, & and " or ' need escaping.
[10] AttValue ::= '"' ([^<&"] | Reference)* '"'
| "'" ([^<&'] | Reference)* "'"
Upvotes: 4
Related Questions
- Curly brackets in HTML
- why "&#39;" is not getting converted to single quotes while using server.htmldecode()?
- <%: %> brackets for HTML Encoding in ASP.NET 4.0
- Show Brackets in Asp.net
- Double angular brackets in ASP.NET C# MVC4
- Angle Brackets in Page head element
- Wrap an ASP.NET control with double quotes
- Should we use encoding for HtmlString?
- Html Encoded Code Expressions
- Is there a way to nest (or escape) ASP.NET inline code inside HTML angle brackets?