From 0f040e6f4ad8f46615d8369036747969913c09b0 Mon Sep 17 00:00:00 2001
From: Thomas Lenz <tlenz@iaik.tugraz.at>
Date: Tue, 19 Dec 2017 12:23:32 +0100
Subject: update some more escaptions

---
 .../at/gv/egovernment/moa/id/auth/servlet/AbstractController.java    | 5 ++---
 .../java/at/gv/egovernment/moa/id/moduls/AuthenticationManager.java  | 4 ++--
 2 files changed, 4 insertions(+), 5 deletions(-)

diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/AbstractController.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/AbstractController.java
index dcf337213..f61b9a4da 100644
--- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/AbstractController.java
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/servlet/AbstractController.java
@@ -249,13 +249,12 @@ public abstract class AbstractController extends MOAIDAuthConstants {
 					null);
 				
 			//add errorcode and errormessage
-			config.putCustomParameter("errorMsg", StringEscapeUtils.escapeHtml(msg));
+			config.putCustomParameter("errorMsg", msg);
 			config.putCustomParameter("errorCode", errorCode);
 		
 			//add stacktrace if debug is enabled
 			if (Logger.isTraceEnabled()) {
-				config.putCustomParameter("stacktrace", 
-						StringEscapeUtils.escapeHtml(getStacktraceFromException(error)));
+				config.putCustomParameter("stacktrace", getStacktraceFromException(error));
 			
 			}
 			
diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/AuthenticationManager.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/AuthenticationManager.java
index bb849a8d0..aaa57fb1d 100644
--- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/AuthenticationManager.java
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/moduls/AuthenticationManager.java
@@ -630,8 +630,8 @@ public class AuthenticationManager extends MOAIDAuthConstants {
 						DefaultGUIFormBuilderConfiguration.VIEW_SINGLELOGOUT, 
 						null);
 				
-				config.putCustomParameter("redirectURLs", sloReqList);
-				config.putCustomParameter("timeoutURL", timeOutURL);
+				config.putCustomParameterWithOutEscaption("redirectURLs", sloReqList);
+				config.putCustomParameterWithOutEscaption("timeoutURL", timeOutURL);
 				config.putCustomParameter("timeout", SLOTIMEOUT);
 		        
 		        guiBuilder.build(httpResp, config, "Single-LogOut GUI");
-- 
cgit v1.2.3