struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Denis Cabasson <>
Subject Re: Struts 2.1.8: Do we need to escape messages?
Date Sat, 17 Oct 2009 03:34:12 GMT
What code are you using to output this message? Is it a s:text? a 

Alex Siman a écrit :
> I just have found that Struts 2.1.8 escapes messages, so instead of message
> (in browser) like:
> User with email registered successfully.
> now I get this one:
> User with email &lt;strong&gt;;/strong&gt; registered
> successfully.
> In first example I used to escape only the inserted parameter "email".
> I am not against automatic escaping of messages. It's good for security. But
> I am wonder, how to use expected HTML markup into messages? Maybe you have
> any another design solution?
> P.S. The downside of upgrades.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message