Deserialize XML with ampersand using XmlSerializer()

Question

The following code breaks when the XML has data like "Lord & Hogan". Any suggestions? Thanks, Ken

    private T GetResponse<T>(String apiObject, String query)
    {
        //Deserialize XML into the type specified.
        HttpWebRequest request = (HttpWebRequest)WebRequest.Create(BuildRequestUri(apiObject, query));
        using (HttpWebResponse resp = (HttpWebResponse)request.GetResponse())
        {
            try
            {
                XmlSerializer ser = new XmlSerializer(typeof(T));
                return (T)ser.Deserialize(resp.GetResponseStream());
            }
            catch (Exception e)
            {
                error = e.InnerException.ToString();
                return default(T);
            }
        }
    }

Answer 1

you should XML-encode data like "Lord & Hogan". It should be encoded like this:

"Lord & Hogan"

Answer 2

& in xml should be replaced with & otherwise it's invalid character.

Answer 3

From here:

A literal ampersand inside an XML tag is not allowed by the XML standard, and such a document will fail to parse by any XML parser.

Other similar questions on StackOverflow:

• How do I escape ampersands in XML
• Why can’t RSS handle the Ampersand?
• parsing XML with ampersand
• Deserialize XML with ampersand using XmlSerializer()
• there are more!

Answer 4

Here is function that can be used to replace all of the disallowed chars: http://msdn.microsoft.com/en-us/library/system.security.securityelement.escape(VS.80).aspx