Issue #1135 new

get_error_page unconditionally HTML-escapes arguments

Jim Paris
created an issue

Following Robert Brewer's suggestion at http://groups.google.com/group/cherrypy-devel/msg/4f100615e3d70c2a, I'm using an error_page callable that changes the content-type and does not return HTML. Since it's not HTML, I don't need or want HTML escaping, but _cperror.py:get_error_page() uncondtionally calls cgi.escape() on each parameter. A new config option alongside 'error_page.default' to disable the escaping would be helpful.

Comments (1)

  1. Log in to comment