• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 242
  • Last Modified:

Problem tryinq to validate confirmation page

I have this page: http://roofgenius.com/test.asp where a user can enter a message
when submitted it sends the values to this page:
http://roofgenius.com/test2.asp
On this page the user can see the values they have entered and can either accept them or go back to the prior page and make corrections
http://roofgenius.com/test.asp Validates,but
http://roofgenius.com/test2.asp gives 8 errors all similar
Example:
 Line 184, Column 43: & did not start a character reference. (& probably should have been escaped as &.)

…  <a href="jmail.asp?name=Robert+Moore&email=Service%40roofgenius.com&comment=…
see attached example of errors
How can i correct this?
errors.jpg
0
isnoend2001
Asked:
isnoend2001
  • 4
  • 3
1 Solution
 
Julian HansenCommented:
You need to replace all instances of & in the url with &amp;
0
 
Julian HansenCommented:
So on your button links - when creating the button you need to look at

HttpUtility.HtmlEncode

Also - consider using sessions / cookies to store the form data for the back button that way you don't need to "remember" it on the button link back. You can just pull it from the session.
0
 
isnoend2001Author Commented:
Thanks  julianH,but i get this error

Microsoft VBScript compilation error '800a0401'

Expected end of statement

/test2.asp, line 125

response.write "Dear: " &amp; name &amp; ",<br />Thank you for sending us the following:"


i don't understand this: HttpUtility.HtmlEncode
also what if the user has cookies disabled
0
Get 10% Off Your First Squarespace Website

Ready to showcase your work, publish content or promote your business online? With Squarespace’s award-winning templates and 24/7 customer service, getting started is simple. Head to Squarespace.com and use offer code ‘EXPERTS’ to get 10% off your first purchase.

 
Julian HansenCommented:
response.write "Dear: " &amp; name &amp; ",<br />Thank you for sending us the following:"

No - not in your code - in your output when you create the links for the buttons you need to convert all the & to &amp; in the URL.

HtmlEncode will do this for you refer

http://msdn.microsoft.com/en-us/library/w3te6wfz.aspx

If people have cookies disabled then they will have problems accessing a lot of sites - just a suggestion - it is very common practice to use cookies / sessions to do what you are doing.
0
 
isnoend2001Author Commented:
not sure what you mean, but i will check
0
 
isnoend2001Author Commented:
I have not fixed this issue, but have to run some errands and i like to stay involved.
I think this needs to be configured to use response.write(Server.HTMLEncode
on this code:

 <% name = request.querystring("name")
  response.write "Dear: "& name & ",<br />Thank you for sending us the following:"
  comment = request.querystring("comment")
  comment = Replace(comment, vbcrlf, "<br />")
   response.write "<br />" & comment & "<br /><br />If you have asked us to contact you, we will be using the following email address:<br>"

  email = request.querystring("email")
  response.write "<span class=""redbold""> Email : " & email & "</span><br /><br />"
   %>
0
 
Julian HansenCommented:
No - it is what comes after that - for the actual button.

Where you output this code
 <a href="jmail.asp?name=...

Open in new window

0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now