[Zope] html_quote in python methods?
Jim Washington
jwashin@vt.edu
Wed, 03 Jan 2001 16:20:38 -0500
Thanks, Andy, Dieter, Chris, Evan for the discussion
What I ended up doing was making a DTML Method called
htmlquote_newlineToBr that looks like:
<dtml-var theitem html_quote newline_to_br>
then calling it from a Python Method like so:
hqnl = self.htmlquote_newlineToBr
myitem=self.fixedLoc['varLoc1']['varLoc2']
print '<table>'
print '<tr><td>%s</td></tr>' % hqnl(theitem=myitem.property1)
print '<table>'
It turned out to be a bit better code than I thought I wanted :)
-- Jim Washington
> ----- Original Message -----
> From: "Jim Washington" <jwashin@vt.edu>
> To: <zope@zope.org>
> Sent: Tuesday, January 02, 2001 6:32 AM
> Subject: [Zope] html_quote in python methods?
>
> > I am using Python Methods a lot now.
> >
> > Good:
> > no more <dtml-with> to get to the objects I need. Yay!
> > no more worrying about closing blocks. Yay!
> >
> > OK, when I make a syntax error, there is no help in the traceback. My
> > Python is getting better and better as a result.
> >
> > To give something back, I have a hint that took me a while to figure
> > out:
> >
> > print '<td width="33%">%s</td>' % (self.thevariable)
> > will not work. The first % needs to be escaped like so:
> >
> > print '<td width="33%%">%s</td>' % (self.thevariable)
> >
> > Now, can I use html_quote in a Python Method? I am letting people enter
> > data for redisplay, and I know some Bozo (TM) will somehow put in
> > "<table>"
> > and break the page.
> >
> > Can I keep this from happening? html_quote does not seem to be in the
> > Python Method namespace.