展开全部
/**
* 获取表单参数的数值。
*
* param escapeHTMLTags escapeHTMLTags=true不允许使用htmltag。
*/
public static String getEscapeHTMLParameter(HttpServletRequest request
, String paramName
, String defaultValue) {
String temp = StringUtils.escapeHTMLTags(RequestUtils.getParameter(request
, paramName, true));
if ( (temp == null) || (temp.equals(""))) {
temp = defaultValue;
}
return StringUtils.nullToString(temp);
}
*/
public static final String escapeHTMLTags(String input) {
//Check if the string is null or zero length -- if so, return
//what was sent in.
if (input == null || input.length() == 0) {
return input;
}
//Use a StringBuffer in lieu of String concatenation -- it is
//much more efficient this way.
StringBuffer buf = new StringBuffer(input.length());
char ch = ' ';
for (int i = 0; i < input.length(); i++) {
ch = input.charAt(i);
if (ch == '<') {
buf.append("<");
}
else if (ch == '>') {
buf.append(">");
}
else {
buf.append(ch);
}
}
return buf.toString();
}
* 获取表单参数的数值。
*
* param escapeHTMLTags escapeHTMLTags=true不允许使用htmltag。
*/
public static String getEscapeHTMLParameter(HttpServletRequest request
, String paramName
, String defaultValue) {
String temp = StringUtils.escapeHTMLTags(RequestUtils.getParameter(request
, paramName, true));
if ( (temp == null) || (temp.equals(""))) {
temp = defaultValue;
}
return StringUtils.nullToString(temp);
}
*/
public static final String escapeHTMLTags(String input) {
//Check if the string is null or zero length -- if so, return
//what was sent in.
if (input == null || input.length() == 0) {
return input;
}
//Use a StringBuffer in lieu of String concatenation -- it is
//much more efficient this way.
StringBuffer buf = new StringBuffer(input.length());
char ch = ' ';
for (int i = 0; i < input.length(); i++) {
ch = input.charAt(i);
if (ch == '<') {
buf.append("<");
}
else if (ch == '>') {
buf.append(">");
}
else {
buf.append(ch);
}
}
return buf.toString();
}
本回答由网友推荐
已赞过
已踩过<
评论
收起
你对这个回答的评价是?
推荐律师服务:
若未解决您的问题,请您详细描述您的问题,通过百度律临进行免费专业咨询
