Issue with Java StringEscapeUtils.escapeHtml4()

java stringescapeutils apache-commons-lang3
Rashmi Ranjan mallick picture Rashmi Ranjan mallick · Feb 27, 2017 · Viewed 8k times · Source

I am trying to escape a string object in my Java application using StringEscapeUtils.escapeHtml4. I am using commons-lang3-3.5.jar library.

Below is the format I am trying to do -

StringEscapeUtils.escapeHtml4("user001")

When I print in console, the output looks like- "user001"

I actually don't want my double quot to be converted into escape characters here. Because, after escaping the string, my program doesn't recognize this as valid string and I am getting malformed JSon. Is there a way to handle this or any better way? Thanks in advance.

Answer

Raman Sahasi picture Raman Sahasi · Feb 27, 2017

Why don't you use escapeJava() instead of escapeHtml4().

escapeJava(String input)
Escapes the characters in a String using Java String rules.

It won't convert your double quotes to " but will simply escape using backslash (which is acceptable in JSON).

You can also check

escapeJson
public static final String escapeJson(String input)

Escapes the characters in a String using Json String rules.

Escapes any values it finds into their Json String form. Deals correctly with quotes and control-chars (tab, backslash, cr, ff, etc.)

Related questions

When i need to escape Html string?

In my legacy project i can see the usage of escapeHtml before string is sent to browser. StringEscapeUtils.escapeHtml(stringBody); I know from api doc what escapeHtml does.here is the example given:- For example: "bread" & "butter" becomes: &…

Read More
StringEscapeUtils.escapeXml is converting utf8 characters which it should not

escapeXml function is converting ѭ Ѯ to ѭ Ѯ which I guess it should not. What I read is that it Supports only the five basic XML entities (gt, lt, quot, amp, apos). Is there a function that only converts …

Read More
JSP can't resolve import of org.apache.commons.lang

I am trying to include the library StringEscapeUtils and everything that I can find indicates that I can import the Apache Org page as follows: <%@ page import="org.apache.commons.lang.StringEscapeUtils" %> however, I can only resolve the …

Read More