Escape for XML & JSON

/**
 * @author Jin
 * @version 1.0.0
 */
public class XmlTool {
    public final static String JSONPARSE="forJSONparse";
    public XmlTool() {
        super();
    }
    /**
     * Replace the five special characters by five "predefined entities".
     * The XML specification defines five "predefined entities" representing special characters,
     * and requires that tool honor them.The entities can be explicitly declared in a DTD.
     * The table below lists the five XML predefined entities. The "Name" column mentions the entity's name. The "Character" column shows the character.
     * <p>
     * Name     Character
     * quot     "
     * amp     &
     * apos     '
     * lt     <
     * gt     >
     * </p>
     * @param sChar
     * @return String. The entities was explicitly declared in this string.
     */
   public static String replacePreEntities(String sChar){
        String sR="";
          sR=sChar.trim();
          sR=sR.replaceAll("&","&amp;");
          sR=sR.replaceAll("\"","&quot;");
          sR=sR.replaceAll("\'","&apos;");
          sR=sR.replaceAll("<","&lt;");
          sR=sR.replaceAll(">","&gt;");
        return sR;
        }
  /**
   * escaped double-quote characters, Single quote characters do not need to be escaped.
   *
   * ************************
   * E.g. in the jsp file.
   * **run inside the server
   * <%
   *  String d = "sss'ss\"ssass\"1234zzz";
   *  d=d.replaceAll("\"","\\\\\"");
   *  //d=d.replaceAll("\'","\\\\\'"); //it works.
   *  String testS = "[{\"s\":\""+d+"\"}]";
   * %>
   * **run inside the browser
   * <script type="text/javascript">
   *       var s=<%=testS%>;   //must be this way. Don't use JSON.parse('<%=testS%>'); in Firefox 44.0.2
   *       console.log(s[0].s);
   * </script>
   * ************************
   *@return  String
   * @param String sChar
   * @param String f is null or "forJSONparse".
   * if f is null, this is for var s=<%=testS%>; in javascript.
   * if f is "forJSONparse", this is for JSON.parse('<%=testS%>'); in javascript.
   */
  public static String escapedJSON(String sChar,String f){
       String sR="";
         sR=sChar.trim();
       
         //for var s=<%=testS%>; in javascript.
         if(f==null){
           sR=sR.replaceAll("\"","\\\\\"");//escaped double-quote characters
         }else if(f.equalsIgnoreCase("forJSONparse")){
         //for JSON.parse('<%=testS%>'); in javascript.
           sR=sR.replaceAll("\"","\\\\\\\\\""); //for JSON.parse();
           sR=sR.replaceAll("\'","\\\\\'");//Single quote characters do not need to be escaped,but it works.
           // sR=sR.replaceAll("'","\\\\\'");//single-quotes, it works, too.
         }
       return sR;
       }
   
}

评论

发表评论

此博客中的热门博文

XML, XSL, HTML

The code in this section is that an XSLT transform is used to translate XML input data to HTML output. Ref: https://docs.oracle.com/javase/tutorial/jaxp/xslt/transformingXML.html Note - The article1a.xsl , which is from in XSLT examples . The following code is for joy.  import java.awt.Desktop; import java.io.*; import java.net.URISyntaxException; import javax.xml.parsers.DocumentBuilder; import javax.xml.parsers.DocumentBuilderFactory; import javax.xml.parsers.ParserConfigurationException; import javax.xml.transform.Transformer; import javax.xml.transform.TransformerConfigurationException; import javax.xml.transform.TransformerException; import javax.xml.transform.TransformerFactory; import javax.xml.transform.dom.DOMSource; import javax.xml.transform.stream.StreamResult; import javax.xml.transform.stream.StreamSource; // For write operation import org.w3c.dom.Document; import org.w3c.dom.Element; import org.xml.sax.SAXException; public class Stylizer { ...
阅读全文

Input in element.eleme.io

Input Input data using mouse or keyboard. Input is a controlled component, it always shows Vue binding value . Under normal circumstances, input event should be handled. Its handler should update component's binding value (or use v-model ). Otherwise, input box's value will not change. Do not support v-model modifiers. ¶ Basic usage < el-input placeholder = "Please input" v-model = "input" > </ el-input > < script > export default { data() { return { input : '' } } } </ script > Hide ¶ Disabled Disable the Input with the disabled attribute. < el-input placeholder = "Please input" v-model = "input" :disabled = "true" > </ el-input > < script > export default { data() { return { input : '' } } } </ script > ¶ Clearable Make the Input clearable with the...
阅读全文

Data URI是由RFC 2397 ACE

https://www.rfc-editor.org/rfc/rfc2397 http://codingpy.com/article/how-to-turn-your-browser-into-code-editor/ https://ace.c9.io/build/kitchen-sink.html https://c9.io/ https://angular-ui.github.io/ The "data" URL scheme Status of this Memo This document specifies an Internet standards track protocol for the Internet community, and requests discussion and suggestions for improvements. Please refer to the current edition of the "Internet Official Protocol Standards" (STD 1) for the standardization state and status of this protocol. Distribution of this memo is unlimited. Copyright Notice Copyright (C) The Internet Society (1998). All Rights Reserved. 1 . Abstract A new URL scheme, "data", is defined. It allows inclusion of small data items as "immediate" data, as if it had been included externally. 2 . Description Some applications that use URLs also have a need to embed (small...
阅读全文