Serializing XML with invalid characters

R

Rob Tillie

Hey all,

I'm trying to serialize a class that has a strong password field in it, so it can contain characters like * or { or <. It serializes fine, but the deserializarion goed wrong, because it doesn't encode does characters.

I know that I can replace all strings with base64 equivalants, but isn't it possible to use some sort of attribute to tell the XmlSerializer that it should escape / handle my illegal characters?

Greetz,

-- Rob.
 
J

Jerry Pisk

The only characters that have special meaning in XML are <, > and " (and "
only in elements, not in their contents). Everything else is game, as long
as it's properly encoded.

You need to translate those three characters to entities, can you post the
piece of code that writes the password out? I've never written custom
serialization myself so you have to show me the code.

Jerry

"Rob Tillie" </O=FLEP-TECH/OU=FIRST ADMINISTRATIVE
GROUP/CN=RECIPIENTS/CN=ROB> wrote in message
news:[email protected]...
 
R

Rob Tillie

Hello Jerry,

I didn't use custom serialization so I guess that is the problem :), so you implicitly answered my question.
So I should do the serialization myself and transform the fields to base64 encoding or something like that?
I hoped they had some kind of attribute to apply on a Property...

I did find on msdn that they have solved this in .NET 2.0, the thing automatically escapes / converts your data...

Greetz,
-- Rob.
 
J

Jerry Pisk

No, you don't need to use base64 at all, all you have to do is encode <, >
and " to &lt;, &gt; and &quot;. This should've been done by the serializer,
let me give it a try, because if the serializer doesn't do that then you
found a bug in it.

Jerry

"Rob Tillie" </O=FLEP-TECH/OU=FIRST ADMINISTRATIVE
GROUP/CN=RECIPIENTS/CN=ROB> wrote in message
 
R

Rob Tillie

Hello Jerry,

I fixed it by using the SoapFormatter, this thing does correctly escape the characters.

Greetz,
-- Rob.
 
M

Marc Scheuner [MVP ADSI]

I'm trying to serialize a class that has a strong password field in it, so it can contain characters like * or { or <.
It serializes fine, but the deserializarion goed wrong, because it doesn't encode does characters.
Click to expand...

Have a look at the XmlConvert class - it can encode / decode
"problematic" characters into codes that work just fine in
serialization.

Marc
================================================================
Marc Scheuner May The Source Be With You!
Bern, Switzerland m.scheuner(at)inova.ch
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Serializing from XML with remote DTD 2
XmlSerializer Hexadecimal question 4
XmlSerializer and invalid string chars? 0
Custom (inherited) ConfigurationSection saved using Configuration.Save() Problem! Please Help! 0
Data serialization options 2
[Update] PHP v5.03 1
Download the JAVA , .NET and SQL Server interview with answers 2
CSharp Coding Standards 18

Top