Pranava Sheoran

Hi Tim,
There is a plan to revamp the whole application next year but for now I have no choice. Is something like <%String myVariable= beanName.fieldName; EscapeHtml(myVariable);%><h:inputText id="TtlInptBx" value=myVariable size="21"> where EscapeHtml() is just a method that returns string. Is something like that possible. And if yes, then can you give a hint as to how to do it.

Thanks for your reply Tim.But I am dealing with a huge codebase using JSF 1.1 and my only option is to change the jspf file provided to me. So it not possible at all?

Hi,
I am a complete beginner to jsp and jspf. I have a jspf fragment which is inserted in a jsp file. The fields in this jspf file read values from a managed bean like <h:inputText id="TtlInptBx" value="#{beanName.fieldName}" size="21">. I want to sanitize the value returned by #{beanName.fieldName} and escape all the javascript tags in this string. IHow can the TtlInptBx read its value from a string defined in a jsp section in the same file. The string in this jsp section will read its value from the managed bean somehow. I don't have the option of sanitizing the data in the java code for the managed bean. Any help or guidance on how to do this is really appreciated.

Thanks
Pranava