Xss encodeForHTMLAttr on request parameteres

Avatar

Avatar

Krisgum

Avatar

Krisgum

Krisgum

15-10-2015

 HI , 

 I'm trying to process request parametres submitted from a form post request . Before  processing i'm performing an Xss check on request parameters via XssApi.encodeForHTMLAttr (requestParamter) .

However for fields like date , requestParameter date value is getting encoded from  

    6/06/1992

     to

    6&#x2f&#x3b;06&#x2f&#x3b;1992

  

 I have also set in osgi config manager  Apache sling request parameter handling default encoding to UTF-8 but doesn't seem to help . I deally i i would like to see the same value for date(6/06/1992) after encoding .

 

Any pointers on how should i go about it ?

 

cheers 

Accepted Solutions (0)

Answers (0)