Html Encoded Expressions in ASP.NET 4.0

No.of Views	:	496
Bookmarked	:	0 times
Downloads	:
Votes	:	0

By jalpesh On 11 Jan 2011 09:01:15

Tag : ASP.NET , ASP.NET 4.0 Forms

Skill Level: Beginner

Images in this article missing? We recently lost them in a site migration. We're working to restore these as you read this. Should you need an image in an emergency, please contact us at info@codegain.com

Introduction

We all know <%=expression%> features in asp.net. We can print any string on page from there. Mostly we are using them in asp.net mvc. Now we have one new features with asp.net 4.0 that we have HTML Encoded Expressions and this prevent Cross scripting attack as we are html encoding them.

ASP.NET 4.0 introduces a new expression syntax <%: expression %> which automatically convert string into html encoded. Let’s take an example for that.
I have just created an hello word protected method which will return a simple string which contains characters that needed to be HTML Encoded. Below is code for that.

protected static string HelloWorld()
{
   return "Hello World!!! returns from function()!!!>>>>>>>>>>>>>>>>>";
}

Now let’s use the that hello world in our page html like below. I am going to use both expression to give you exact difference.

<form id="form1" runat="server">
<div>
   <strong><%: HelloWorld()%></strong>
</div>
<div>
   <strong><%= HelloWorld()%></strong>
</div>
</form>

Now let’s run the application and you can see in browser both look similar.

But when look into page source html in browser like below you can clearly see one is HTML Encoded and another one is not.

That’s it.It’s cool.Happy Programming

About Author

jalpesh

Occupation	-	Software Engineer
Company	-	DotNetJaps
Member Type	-	Expert
Location	-	India
Joined date	-	08 May 2010
Home Page	-	http://www.dotnetjalps.com
Blog Page	-	http://www.dotnetjalps.com

I am jalpesh vadgamaa an Microsoft MVP for Visual C# and BrainBench Certified ASP.NET Developer having experience of five year in Microsoft .NET Technology.I am working as Project Leader in Mid Size company.My work area comprises of Enterprise Level projects using ASP.NET and other Microsoft .NET Technologies.Please feel free to contact me for any queries via posting comments on my blog I will try to reply as early as possible.


Other popularSectionarticles
What is new in asp.net 4.0 and .net Framework 4.0 Microsoft.NET Framework 4.0 beta version is out now. Let’s see the what’s new in asp.net 4.0 for the developer purpose. There are lots of features are there. Some of them are following. Published Date : 31/May/2010 Two new profile in visual studio 2010 Visual studio 2010 is a great tool and i have become fan of visual studio 2010. I have found two new code profile in visual studio 2010. Published Date : 25/May/2010 ASP.NET 4.0 in Viual Studio 2010 Asp.net 4 Microsoft Mostly focus on Client Side Programming Databindind,Template randing ,and in Vs 2010 Microsoft enhance Css designer Power Full Support of AJAX.NET , add new Controls in asp.net like Chart Controls Published Date : 06/May/2010 New Option dialog box enhancement in Visual studio 2010 New Option dialog box enhancement in Visual studio 2010 Published Date : 06/Aug/2011 New Features Available in asp.net 4.0 This article explain about what is new features available in asp.net 4.0 Published Date : 18/Oct/2010

Comments

There is no comments for this articles.