You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
<li>
<divclass='irstats2_setfinder_row'>
<ahref='https://example.com/cgi/stats/report/institution/University%20of%20York%20&%20Aarhus%20University/'>University of York & Aarhus University</a>
<!-- ^^^ here -->
</div>
</li>
should be either & or %26.
As the stats URL is a REST-like interface, the value is in a path (rather than query string).
I think the best fix would be to use URI::Escape and encode the value with uri_escape( $escape_value ).
That module is already used in other parts of EPrints. The escape_value may not be needed with this approach.
https://github.com/eprintsug/irstats2/blob/main/cgi/stats/set_finder#L86
The call to
EPrints::Utils::url_escapedoesn't encode&s - so if a set value has that character in it, it produces broken XML:should be either
&or%26.As the stats URL is a REST-like interface, the value is in a path (rather than query string).
I think the best fix would be to
use URI::Escapeand encode the value withuri_escape( $escape_value ).That module is already used in other parts of EPrints. The escape_value may not be needed with this approach.
Other options (feel worse?) are:
HTML::Entities::encode( EPrints::Utils::url_escape( $escape_value ), '&')(feels messy)HTML::Entities::encode( $escape_value )(doesn't encode spaces)The text was updated successfully, but these errors were encountered: