[Springframework-developer] HTML escaping

[<jue...@we...>]

Does anyone know about restrictions concerning HTML escaping? AFAIK, any =
text written to JSPs or Velocity templates that produce HTML content =
needs to get escaped. Thus, Spring's JSP tags could escape implicitly =
when returning messages, form values, and form errors - in case of =
content type HTML.

I wonder how we could ease things for JSP expressions and Velocity =
templates, in terms of implicit escaping. The model itself should be =
HTML-agnostic, so we need a solution specific to HTML views. Maybe wrap =
the WebApplicationContext and Errors instances accordingly, in an HTML =
view implementation? Any thoughts?

Juergen