2006/unicorn/src/org/w3c/unicorn/action Action.java,1.11,1.12

Update of /sources/public/2006/unicorn/src/org/w3c/unicorn/action
In directory hutz:/tmp/cvs-serv28066/src/org/w3c/unicorn/action

Modified Files:
	Action.java 
Log Message:
escapes queryString
+ removed logger (logging should be done in children classes)

Index: Action.java
===================================================================
RCS file: /sources/public/2006/unicorn/src/org/w3c/unicorn/action/Action.java,v
retrieving revision 1.11
retrieving revision 1.12
diff -u -d -r1.11 -r1.12
--- Action.java	23 Sep 2009 18:07:08 -0000	1.11
+++ Action.java	24 Sep 2009 17:34:59 -0000	1.12
@@ -1,3 +1,7 @@
+// $Id$
+// Author: Thomas Gambet
+// (c) COPYRIGHT MIT, ERCIM and Keio, 2009.
+// Please first read the full copyright statement in file COPYRIGHT.html
 package org.w3c.unicorn.action;
 
 import java.io.IOException;
@@ -8,8 +12,7 @@
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 
-import org.apache.commons.logging.Log;
-import org.apache.commons.logging.LogFactory;
+import org.apache.commons.lang.StringEscapeUtils;
 import org.w3c.unicorn.Framework;
 import org.w3c.unicorn.util.Language;
 import org.w3c.unicorn.util.Message;
@@ -19,8 +22,6 @@
 	
 	private static final long serialVersionUID = -7503310240481494239L;
 	
-	private static Log logger = LogFactory.getLog(Action.class);
-	
 	@Override
 	protected void doGet(HttpServletRequest req, HttpServletResponse resp)
 			throws ServletException, IOException {
@@ -51,7 +52,7 @@
 			if (!queryString.equals("?"))
 				queryString += "&";
 		}
-		return queryString;
+		return StringEscapeUtils.escapeHtml(queryString);
 	}
 	
 	public String getLanguage(String langParameter, HttpServletRequest req, ArrayList<Message> messages) {

Received on Thursday, 24 September 2009 17:35:10 UTC