the 'escape()' function in javascript returns different values in swf and dhtml

My JavasScript book says that `escape` is deprecated in
ECMAScript v3  
and that you should use `encodeURI` or `EncodeURIComponent`
instead.   
Unfortunately, those don't seem to be in Actionscript. 
Looks like we  
need to fix this up in the runtime.  File a bug?

[The standard for `escape` says that none of the punctuation
 
characters *_+-./ are escaped, so DHTML is operating correctly
here.]

On 2007-04-16, at 13:19 EDT, Henry Minsky wrote:

> I was tracking a bug in SOAP data down, and one of the
things  
> happening is
> that the data in an lzpostbody from
> the client is not being URLencoded properly. We are
using the  
> Javascript
> builtin 'escape', which returns what looks
> like the wrong value in dhtml; it does not escape a
"+" character  
> into a hex
> code.
>
> escape("2+2")
> swf ==> '2%2B2'
> dhtml ==> '2+2'
>
> Does anyone know if escape() is supposed to work in
DHTML, or if  
> there is a
> standard (cross browser?) other way to
> url-encode strings?
>
>
> -- 
> Henry Minsky
> Software Architect
> hminskylaszlosystems.com

Yup, just tested it.

I guess the solution is just:

if ($as2) {
   encodeURIComponent = escape;
}

On 2007-04-16, at 13:42 EDT, Henry Minsky wrote:

> I'll file a bug. I think I will put something that
calls   
> EncodeURIComponent
> into the kernel ; in swf it can call escape() but
> in DHTML it will call the browser function. IE and
Firefox seem to  
> support
> it, as does Opera. Safari??
>
>
>
> On 4/16/07, P T Withington <ptwopenlaszlo.org> wrote:
>>
>> My JavasScript book says that `escape` is
deprecated in ECMAScript v3
>> and that you should use `encodeURI` or
`EncodeURIComponent` instead.
>> Unfortunately, those don't seem to be in
Actionscript.  Looks like we
>> need to fix this up in the runtime.  File a bug?
>>
>> [The standard for `escape` says that none of the
punctuation
>> characters *_+-./ are escaped, so DHTML is operating
correctly  
>> here.]
>>
>> On 2007-04-16, at 13:19 EDT, Henry Minsky wrote:
>>
>> > I was tracking a bug in SOAP data down, and
one of the things
>> > happening is
>> > that the data in an lzpostbody from
>> > the client is not being URLencoded properly.
We are using the
>> > Javascript
>> > builtin 'escape', which returns what looks
>> > like the wrong value in dhtml; it does not
escape a "+" character
>> > into a hex
>> > code.
>> >
>> > escape("2+2")
>> > swf ==> '2%2B2'
>> > dhtml ==> '2+2'
>> >
>> > Does anyone know if escape() is supposed to
work in DHTML, or if
>> > there is a
>> > standard (cross browser?) other way to
>> > url-encode strings?
>> >
>> >
>> > --
>> > Henry Minsky
>> > Software Architect
>> > hminskylaszlosystems.com
>>
>>
>
>
> -- 
> Henry Minsky
> Software Architect
> hminskylaszlosystems.com

I think it is being overly zealous about cross-site
scripting.  It is  
not letting me eval an expression in another frame.  Maybe I
can ask  
the Opera guys about it.

On 2007-04-16, at 13:44 EDT, Henry Minsky wrote:

> BTW, Opera doesn't like the DHTML debugger's eval
command for some  
> reason. I
> just upgraded to Opera 9.2. Did something
> change in the DHTML debugger's call to eval?
>
> lzx> encodeURIComponent("2+2")
> ERROR: [Error:
>
> name: EvalError
>
> message: Statement on line 1087: Illegal use of eval
> Backtrace:
>  Line 1087 of linked script
> http://gigicorp:8080/legals3/lps/includes/lfc/LFC
dhtml-debug.js
>
>    var $2_value = eval($1_expr);
>  Line 1 of  script
>
>    $modules.lz.Debug.doEval((document.getElementById
> ("LaszloDebuggerInput")).value);
> return false;
>  At unknown location
>
>    [statement source code not available]
>
>
> ]
>
>
>
> On 4/16/07, Henry Minsky <henry.minskygmail.com> wrote:
>>
>> I'll file a bug. I think I will put something that
calls
>> EncodeURIComponent into the kernel ; in swf it can
call escape() but
>> in DHTML it will call the browser function. IE and
Firefox seem to  
>> support
>> it, as does Opera. Safari??
>>
>>
>>
>> On 4/16/07, P T Withington <ptwopenlaszlo.org> wrote:
>> >
>> > My JavasScript book says that `escape` is
deprecated in  
>> ECMAScript v3
>> > and that you should use `encodeURI` or
`EncodeURIComponent`  
>> instead.
>> > Unfortunately, those don't seem to be in
Actionscript.  Looks  
>> like we
>> > need to fix this up in the runtime.  File a
bug?
>> >
>> > [The standard for `escape` says that none of
the punctuation
>> > characters *_+-./ are escaped, so
DHTML is operating correctly  
>> here.]
>> >
>> > On 2007-04-16, at 13:19 EDT, Henry Minsky
wrote:
>> >
>> > > I was tracking a bug in SOAP data down,
and one of the things
>> > > happening is
>> > > that the data in an lzpostbody from
>> > > the client is not being URLencoded
properly. We are using the
>> > > Javascript
>> > > builtin 'escape', which returns what
looks
>> > > like the wrong value in dhtml; it does
not escape a "+" character
>> > > into a hex
>> > > code.
>> > >
>> > > escape("2+2")
>> > > swf ==> '2%2B2'
>> > > dhtml ==> '2+2'
>> > >
>> > > Does anyone know if escape() is supposed
to work in DHTML, or if
>> > > there is a
>> > > standard (cross browser?) other way to
>> > > url-encode strings?
>> > >
>> > >
>> > > --
>> > > Henry Minsky
>> > > Software Architect
>> > > hminskylaszlosystems.com
>> >
>> >
>>
>>
>> --
>> Henry Minsky
>> Software Architect
>> hminskylaszlosystems.com
>>
>>
>
>
> -- 
> Henry Minsky
> Software Architect
> hminskylaszlosystems.com

I guess LzRuntime.  If that starts getting to messy, we can
break it  
out into platform pieces.

On 2007-04-16, at 14:15 EDT, Henry Minsky wrote:

> Where would be the best place to put this compatibility
 
> declaration , in
> LzRuntime.lzs? Or in some swf  kernel file?
>
>
>
>
> On 4/16/07, P T Withington <ptwopenlaszlo.org> wrote:
>>
>> Yup, just tested it.
>>
>> I guess the solution is just:
>>
>> if ($as2) {
>>    encodeURIComponent = escape;
>> }
>>
>> On 2007-04-16, at 13:42 EDT, Henry Minsky wrote:
>>
>> > I'll file a bug. I think I will put something
that calls
>> > EncodeURIComponent
>> > into the kernel ; in swf it can call escape()
but
>> > in DHTML it will call the browser function. IE
and Firefox seem to
>> > support
>> > it, as does Opera. Safari??
>> >
>> >
>> >
>> > On 4/16/07, P T Withington <ptwopenlaszlo.org> wrote:
>> >>
>> >> My JavasScript book says that `escape` is
deprecated in  
>> ECMAScript v3
>> >> and that you should use `encodeURI` or
`EncodeURIComponent`  
>> instead.
>> >> Unfortunately, those don't seem to be in
Actionscript.  Looks  
>> like we
>> >> need to fix this up in the runtime.  File
a bug?
>> >>
>> >> [The standard for `escape` says that none
of the punctuation
>> >> characters *_+-./ are escaped, so
DHTML is operating correctly
>> >> here.]
>> >>
>> >> On 2007-04-16, at 13:19 EDT, Henry Minsky
wrote:
>> >>
>> >> > I was tracking a bug in SOAP data
down, and one of the things
>> >> > happening is
>> >> > that the data in an lzpostbody from
>> >> > the client is not being URLencoded
properly. We are using the
>> >> > Javascript
>> >> > builtin 'escape', which returns what
looks
>> >> > like the wrong value in dhtml; it
does not escape a "+"  
>> character
>> >> > into a hex
>> >> > code.
>> >> >
>> >> > escape("2+2")
>> >> > swf ==> '2%2B2'
>> >> > dhtml ==> '2+2'
>> >> >
>> >> > Does anyone know if escape() is
supposed to work in DHTML, or if
>> >> > there is a
>> >> > standard (cross browser?) other way
to
>> >> > url-encode strings?
>> >> >
>> >> >
>> >> > --
>> >> > Henry Minsky
>> >> > Software Architect
>> >> > hminskylaszlosystems.com
>> >>
>> >>
>> >
>> >
>> > --
>> > Henry Minsky
>> > Software Architect
>> > hminskylaszlosystems.com
>>
>>
>
>
> -- 
> Henry Minsky
> Software Architect
> hminskylaszlosystems.com