Reputation: 149
JSP string with "enter" causing problems
I have app engine app that uses a java servlet to save a message to the datastore that is posted by a user (using a form).
String content = req.getParameter("message");
message.setProperty("content", content);
When later processing the message in JSP I get a run-time error if the user has hit "enter" when typing the message.
messageArray[<%=i%>]= {
content: "<%=message.getProperty("content")%>",
How do I solve this? I would like to save the "enter" to display the message properly.
Thanks!
Upvotes: 0
Views: 136
Answers (1)
Reputation: 413712
You're going to have to use something like JSON encoding to make the string safe for inclusion into JavaScript source. You should do that anyway to prevent an obvious XSS attack.
JavaScript doesn't allow raw newlines in string constants. If you wanted to you could create your own EL function to sanitize the string, converting non-printable characters to \uXXXX escapes, and making sure that embedded quotes are preceded by a backslash.
Upvotes: 1
Related Questions
- How to escape JavaScript in JSP?
- Passing String variable from java to jsp
- error when pressing enter in an input text
- JSP Cannot get value from input
- Javascript error on String (unterminated string literal)
- JAVA String error in JSP
- Javascript function not accepting JSP created String
- Error using Javascript and JSP, string with space gives `Unterminated string literal`
- escaping a value in javascript when submitting form onclick
- how to trim "enter key" in a string