Closed ghenzler closed 2 months ago
DocView is XML 1.0 (not 1.1). Therefore the XML 1.0 compliant escaping should be done: https://commons.apache.org/proper/commons-lang/apidocs/org/apache/commons/lang3/StringEscapeUtils.html#escapeXml10-java.lang.String- (not the one for 1.1 which includes control characters!
https://github.com/Netcentric/accesscontroltool/blob/develop/docs/AdvancedFeatures.md#providing-initial-content provides the ability to create content on the fly
For cases where the whole string is given as literal, it just needs to be valid xml. For cases that EL expressions
${..}
are used, there is at the moment no way to encode it correctly without using a long chain ofreplace()
functions. Therefore https://commons.apache.org/proper/commons-lang/apidocs/org/apache/commons/lang3/StringEscapeUtils.html#escapeXml11-java.lang.String- shall be made available and the documentation be updated to encourage the use of this function for theintitialContent
case.