tags:

views:

598

answers:

2
+2  Q: 

C# HttpWebReqest - escape POST content?

When I've uploaded content from my C# app to a website in the past, I've used a POST request like so:

    HttpWebRequest wr = (HttpWebRequest)WebRequest.Create("http://" + this.server + "/log.php");
    wr.Method = "POST";
    wr.ContentType = "application/x-www-form-urlencoded";
    string paramString = "v=" + this.version + "&m=" + this.message;
    wr.ContentLength = paramString.Length;
    StreamWriter stOut = new StreamWriter(wr.GetRequestStream(), System.Text.Encoding.ASCII);
    stOut.Write(paramString);
    stOut.Close();

My problem is that now I'm in a situation where this.message will very likely contain newlines, tabs, and special characters including "&" and "=". Do I need to escape this content. If so, how?

+5  A: 

You can use HttpUtility.HtmlEncode/HtmlDecode or UrlEncode/UrlDecode as appropriate.

Paul Alexander  2009-04-20 22:29:22
Yup. UrlEncode was what I needed:http://msdn.microsoft.com/en-us/library/4fkewx0t.aspxThanks.
Andrew  2009-04-20 22:32:26
Crud. This won't work. I need a .Net 2.0 method.
Andrew  2009-04-20 22:35:58
That's been in since 1.0 :)
Jon Skeet  2009-04-20 22:37:46
(If you're not finding it with Intellisense, make sure you're referencing the System.Web assembly.)
Jon Skeet  2009-04-20 22:38:22
yeah... just saw that. Sorry. I saw the .Net 3.5 on the doc page and got scared. Jumped the gun a little.
Andrew  2009-04-20 22:38:26
+1  A: 

Just for reference, the solution to my problem was in:

System.Web.HttpUtility.UrlEncode

Which is supported by all versions of the .Net framework =p

Specifically, I'm using the overload that takes a string as an argument. Running this on all parameter values will make them safe for POSTing.

Andrew  2009-04-20 22:46:21

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?