Argotic Syndication Framework

Vote

Do not HTML-Escape non-html AtomEntity.Content

description

The implementation of AtomContent.WriteTo() uses System.Xml.XmlWriter.WriteString(), which HTML-escapes certain characters (as described in MSDN: http://msdn.microsoft.com/en-us/library/system.xml.xmlwriter.writestring.aspx). But if the content type is not an html/xhtml MIME type, it should not be escaped (see Section 4.1.3.1 of RFC 4287 [the Atom Syndication Spec]). Attached is sample code.

file attachments

demo.cs

comments

IanMayo wrote Sep 23, 2008 at 3:12 PM

Hi,
I'd like to increase the impact of this issue please, since it represents a failure to comply with the Atom spec.

From looking at the code is appears that the following fix is required:

identify whether the type of the entry content requires html-escapes
use plain writer/html-escaping writer as required

cheers,
Ian.

Item 15 of 30 Previous | Next

work item details

Item number:	11319
User comments:	1
Status:	Proposed
Reason Closed:	Unassigned
Type:	Issue
Impact:	Low
Release:	Unassigned
Assigned to:	Trickster
Component:
Reported on: Reported by:	Sep 16, 2008 at 8:52 PM turbodrubin
Updated on: Updated by:	Feb 14 at 7:26 PM dblock
Closed on: Closed by:	n/a n/a

Keyboard shortcuts are available for this page.

Updating...