[Catalyst] Re: Escaping of "argument" of private path
pagaltzis at gmx.de
Tue Mar 15 11:03:46 GMT 2011
* John M. Dlugosz <wxju46gefd at snkmail.com> [2011-03-15 08:10]:
> <img src="[% c.uri_for("/static/gallery",rec.dirname,rec.filename) %]" alt="photo" />
> That works (using Smart_URI settings to leave off the host).
> But it did not escape out the '&' in the filename! Is that
> a bug?
No. It’s exactly the right answer: ` ` → `%20` is URI escaping
(which `uri_for` does, as it should), `&` → `&` is HTML
escaping (which `uri_for` has nothing to do with). You want
<img src="[% c.uri_for("/static/gallery",rec.dirname,rec.filename) | html %]" alt="photo" />
Aristotle Pagaltzis // <http://plasmasturm.org/>
More information about the Catalyst