The Shibboleth IdP V3 software has reached its End of Life and is no longer supported. This documentation is available for historical purposes only. See the IDP4 wiki space for current documentation on the supported version.

HtmlEncoder

The encoder property defines an HTMLEncoder object (javadoc here) which allows safe encoding of various types.

You should always use the encoder as protection against cross site-scripting and other attacks.

 Methods available are

encodeForHTML

This is used for to encode HTML text.

Example
$encoder.encodeForHTML($someProperty)

encodeForHTMLAttribute

This is used to encode an HTML attribute

Example
<a href="$encoder.encodeForHTMLAttribute($someProperty)">Link</a>