How can I avoid a string in classic ASP for use in an XPath request?

Question

How can I avoid a string in classic ASP for use in an XPath request?

I have a string that I would like to avoid for use in an XPath query. In C #, I can do this using a call SecurityElement.Escape. Is there an equivalent call in classic ASP?

+3

c # xpath asp-classic

Rob segal Jan 27 '10 at 16:52

source share

1 answer

Rubens farias · Accepted Answer · 2010-01-27T16:56:34+0000

No, you will need to handle the escape of the string.

xpath = "//node[@attribute='" & SecurityElementEscape(value) & "']"

Function SecurityElementEscape(value)
    SecurityElementEscape = 
        Replace(Replace(Replace(Replace(Replace(value, 
            "&" , "&amp;" ), '' // must be first one
            "<" , "&lt;"  ),
            ">" , "&gt;"  ), 
            """", "&quot;"), 
            "'" , "&apos;") 
End Function

How can I avoid a string in classic ASP for use in an XPath request?

More articles: