tags:

views:

64

answers:

1
+2  Q: 

How to get back text in html format by using something like URLDecode

I am passing value of text-area in a.cfm in variable of GetXmlHttpObject to b.cfm page and displaying the value in a . How can I get exact formatting of the text I entered in text-area of a.cfm page into div of b.cfm page.

a.cfm
    <textarea name="sum1#i#" id="sum1#i#" html="yes" cols="98" rows="5"></textarea> [my text area]
    url=url+"?dept="+iden+"&desc="+encodeURIComponent(desc); [desc: value of text area]

b.cfm
    <cfoutput>
    <div style="border:1px solid">#URLDecode(desc)#</div>   
    </cfoutput>

Like I am sending value as 'hellothere' encodeURIComponent: 'hello%0Athere'

but its appearing as 'hello there' [in one line] I want it to be in: 'hello <break-line> there' [in two different lines, means in the same format as it was in text-area]

Thanks!!!

+4  A: 

The <pre></pre> tags will preserve spaces and newlines.

<cfoutput>
    <div style="border:1px solid"> <pre>#URLDecode(desc)#</pre> </div>   
</cfoutput>
Ryan Zachry  2010-04-09 18:39:56
Thanks Ryan that worked!!
Deepak Yadav  2010-04-09 18:44:05
You'll want to be extremely careful, as doing this could open your site up for XSS and possibly other security attacks. (An attacker could send someone to `b.cfm?desc=</textarea><script type='text/javascript'>function submitUserPasswordToMySite(){...}; submitUserPasswordToMySite();</script>` and it would have access to local data and be able to send data to an external location that would log it.) As a general rule, never directly render something from the URL on the page without *cleaning* it first. By cleaning, of course, I mean removing potential security threats.
Adam Tuttle  2010-04-09 23:18:56
Thanks for the suggestion Adam.
Deepak Yadav  2010-04-12 04:29:22

related questions

What JavaScript patterns do you use most?
Javascript events
What style do you use for creating an "class" in JavaScript?
Graphing JavaScript Library
What's the difference in closure style
Getting the text from a drop-down box
How to specify javascript to run when ModalPopupExtender is shown
Length of Javascript Associative Array
How Do I Post and then redirect to an external URL from ASP.Net?
How to set up a CSS switcher in ASP.NET
Wrapping lists into columns
Javascript keyboard events primer? (or rather: help me with my custom dropdown)
Http Auth in a Firefox 3 bookmarklet
Best Debugging Tools for JavaScript/xulrunner Development
How can I turn a string of HTML into a DOM object in a Firefox extension?
Call ASP.NET Function From Javascript?
Javascript troubleshooting tools in IE
MAC addresses in JavaScript
Capturing TAB key in text box
CSS Background Color in Javascript
How can I make the browser see CSS and Javascript changes?
Triple Quotes? How do I delimit a databound Javascript string parameter in ASP.NET?
ASP .Net Custom Client-Side Validation
What JavaScript library would you choose for a new project and why?
Detecting font in JavaScript