Feature #39886
f:format.json: Make tag "escaping" default
Status: | Resolved | Start date: | 2012-08-17 | |
---|---|---|---|---|
Priority: | Should have | Due date: | ||
Assigned To: | Adrian Föder | % Done: | 100% |
|
Category: | ViewHelpers | |||
Target version: | TYPO3 Flow Base Distribution - 2.0 beta 1 | |||
Has patch: | Yes |
Description
Currently, the JSON ViewHelper will put greater-and-lower-than-characters through as they are, which might be dangerous in ViewHelper, ie HTML context.
Associated revisions
[FEATURE] Format.JsonViewHelper escapes tag characters per default
Since occuring plain greater-than or less-than characters in HTML
context could be dangerous (even CDATA sequences can be stopped with
this), the tags are now converted to their hexadecimal representation.
Since this is standard JSON syntax, this is considered not to be a
breaking change.
Change-Id: Ib797c380aa4b9e45ebb7d21eaa0715d4c5a9a999
Resolves: #39886
Releases: 1.2
History
#1 Updated by Gerrit Code Review almost 3 years ago
- Status changed from Accepted to Under Review
Patch set 1 for branch master has been pushed to the review server.
It is available at http://review.typo3.org/13853
#2 Updated by Gerrit Code Review almost 3 years ago
Patch set 2 for branch master has been pushed to the review server.
It is available at http://review.typo3.org/13853
#3 Updated by Gerrit Code Review almost 3 years ago
Patch set 3 for branch master has been pushed to the review server.
It is available at http://review.typo3.org/13853
#4 Updated by Adrian Föder almost 3 years ago
- Status changed from Under Review to Resolved
- % Done changed from 0 to 100