aboutsummaryrefslogtreecommitdiff
path: root/id/server/idserverlib/src/main
diff options
context:
space:
mode:
authorThomas Lenz <tlenz@iaik.tugraz.at>2017-11-13 10:19:27 +0100
committerThomas Lenz <tlenz@iaik.tugraz.at>2017-11-13 10:19:27 +0100
commit5c5a7ed27f8f39c470d60a7e34848774ea1d6761 (patch)
treeedbcd7f2a30ed11c5cee28a736654bd802034c08 /id/server/idserverlib/src/main
parent314f13841bf0bb2a8171f715ac999ac8ccf6b58e (diff)
downloadmoa-id-spss-5c5a7ed27f8f39c470d60a7e34848774ea1d6761.tar.gz
moa-id-spss-5c5a7ed27f8f39c470d60a7e34848774ea1d6761.tar.bz2
moa-id-spss-5c5a7ed27f8f39c470d60a7e34848774ea1d6761.zip
add error message escaption
Diffstat (limited to 'id/server/idserverlib/src/main')
-rw-r--r--id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/AbstractController.java2
1 files changed, 1 insertions, 1 deletions
diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/AbstractController.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/AbstractController.java
index e68432e96..df0d9c44d 100644
--- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/AbstractController.java
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/AbstractController.java
@@ -232,7 +232,7 @@ public abstract class AbstractController extends MOAIDAuthConstants {
ErrorResponseUtils utils = ErrorResponseUtils.getInstance();
String code = utils.mapInternalErrorToExternalError(
((InvalidProtocolRequestException)e).getMessageId());
- String descr = e.getMessage();
+ String descr = StringEscapeUtils.escapeHtml(e.getMessage());
resp.setContentType(MediaType.HTML_UTF_8.toString());
resp.sendError(HttpServletResponse.SC_BAD_REQUEST, "Protocol validation FAILED!" +
"(Errorcode=" + code +