- From: David Dorward <david@dorward.me.uk>
- Date: Mon, 7 Aug 2006 20:37:02 +0100
- To: dave@williamz.net
- Cc: www-validator@w3.org
On Mon, Aug 07, 2006 at 11:52:39AM +0100, dave@williamz.net wrote: > 1. At one place, I am using JavaScript to place some HTML in the document. > However, the validator ignores the fact that the quotes need to be escaped > or that I am not placing HTML inside a script tag as such, but rather into > a variable... You are using XHTML - http://www.w3.org/TR/xhtml1/#h-4.8 - http://hixie.ch/advocacy/xhtml > 2. The code I have written has & in all links and this is what displays > in view page source. However, the validator somehow picks up an additional > hidden pass through with a PHP session id. As this is not visible under > view source It is if you have cookies disabled. > and the code writer has no control over how php places its > session variables in links, The code writer does have such control, the validator reminds PHP authors to look at http://www.w3.org/QA/2005/04/php-session which explains how that control is implemented. > is it right for a document to fail validation > on these grounds? Yes. The document being served doesn't conform to the DTD. The validator is testing the document is recieves, not the document the author wrote (and if they are not the same thing then it can't test the document the author wrote!). > Would advisories not be better than fails for this type of problem? No, they are errors, not things which are allowed by which should be avoided. -- David Dorward http://dorward.me.uk
Received on Monday, 7 August 2006 19:37:07 UTC