Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 239
  • Last Modified:

Problem tryinq to validate confirmation page

I have this page: http://roofgenius.com/test.asp where a user can enter a message
when submitted it sends the values to this page:
http://roofgenius.com/test2.asp
On this page the user can see the values they have entered and can either accept them or go back to the prior page and make corrections
http://roofgenius.com/test.asp Validates,but
http://roofgenius.com/test2.asp gives 8 errors all similar
Example:
 Line 184, Column 43: & did not start a character reference. (& probably should have been escaped as &.)

…  <a href="jmail.asp?name=Robert+Moore&email=Service%40roofgenius.com&comment=…
see attached example of errors
How can i correct this?
errors.jpg
0
isnoend2001
Asked:
isnoend2001
  • 4
  • 3
1 Solution
 
Julian HansenCommented:
You need to replace all instances of & in the url with &amp;
0
 
Julian HansenCommented:
So on your button links - when creating the button you need to look at

HttpUtility.HtmlEncode

Also - consider using sessions / cookies to store the form data for the back button that way you don't need to "remember" it on the button link back. You can just pull it from the session.
0
 
isnoend2001Author Commented:
Thanks  julianH,but i get this error

Microsoft VBScript compilation error '800a0401'

Expected end of statement

/test2.asp, line 125

response.write "Dear: " &amp; name &amp; ",<br />Thank you for sending us the following:"


i don't understand this: HttpUtility.HtmlEncode
also what if the user has cookies disabled
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
Julian HansenCommented:
response.write "Dear: " &amp; name &amp; ",<br />Thank you for sending us the following:"

No - not in your code - in your output when you create the links for the buttons you need to convert all the & to &amp; in the URL.

HtmlEncode will do this for you refer

http://msdn.microsoft.com/en-us/library/w3te6wfz.aspx

If people have cookies disabled then they will have problems accessing a lot of sites - just a suggestion - it is very common practice to use cookies / sessions to do what you are doing.
0
 
isnoend2001Author Commented:
not sure what you mean, but i will check
0
 
isnoend2001Author Commented:
I have not fixed this issue, but have to run some errands and i like to stay involved.
I think this needs to be configured to use response.write(Server.HTMLEncode
on this code:

 <% name = request.querystring("name")
  response.write "Dear: "& name & ",<br />Thank you for sending us the following:"
  comment = request.querystring("comment")
  comment = Replace(comment, vbcrlf, "<br />")
   response.write "<br />" & comment & "<br /><br />If you have asked us to contact you, we will be using the following email address:<br>"

  email = request.querystring("email")
  response.write "<span class=""redbold""> Email : " & email & "</span><br /><br />"
   %>
0
 
Julian HansenCommented:
No - it is what comes after that - for the actual button.

Where you output this code
 <a href="jmail.asp?name=...

Open in new window

0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now