Js´úÂë
var url=Service.aspx?Value=' + escape(va);
obj=CreateAJAX();
if(obj)
{
obj.open('get',url,true);
obj.send(null);
}
var url=Service.aspx?Value=' + escape(va);
obj=CreateAJAX();
if(obj)
{
obj.open('get',url,true);
obj.send(null);
}
ASP.NETµÄESCAPEº¯Êý£º
C#´úÂë
private string escape(string s)
{ ......
Js´úÂë
var url=Service.aspx?Value=' + escape(va);
obj=CreateAJAX();
if(obj)
{
obj.open('get',url,true);
obj.send(null);
}
var url=Service.aspx?Value=' + escape(va);
obj=CreateAJAX();
if(obj)
{
obj.open('get',url,true);
obj.send(null);
}
ASP.NETµÄESCAPEº¯Êý£º
C#´úÂë
private string escape(string s)
{ ......
Asp.net ºǫ́µ÷ÓÃjs·½·¨(ת)
1. ÓÃResponse.Write·½·¨
¡¡¡¡´úÂëÈçÏ£º
Response.Write("<script type='text/javascript'>alert("XXX");</script>");
´Ë·½·¨È±ÏݾÍÊDz»Äܵ÷Óýű¾ÎļþÖеÄ×Ô¶¨ÒåµÄº¯Êý£¬Ö»Äܵ÷ÓÃÄÚ²¿º¯Êý£¬¾ßÌåµ÷ÓÃ×Ô¶¨ÒåµÄº¯ÊýÖ»ÄÜÔÚResponse.WriteдÉϺ¯Êý¶¨ Ò壬±ÈÈç
Response.Write("<script type='text/javascript'>function myfun(){}</script>");
2.ÓÃClientScriptÀà
¡¡¡¡´úÂëÈçÏ£ºÔÚÏëµ÷ÓÃij¸öjavascript½Å±¾º¯ÊýµÄµØ·½Ìí¼Ó´úÂ룬עÒâÒª±£Ö¤MyFunÒѾÔڽű¾ÎļþÖж¨Òå¹ýÁË¡£
ClientScript.RegisterStartupScript(ClientScript.GetType(), "myscript", "<script>MyFun();</script>");
¡¡¡¡Õâ¸ö·½·¨±ÈResponse.Write¸ü·½±ãһЩ£¬¿ÉÒÔÖ±½Óµ÷Óýű¾ÎļþÖеÄ×Ô¶¨Ò庯Êý¡£
3.ÆÕͨµÄÌí¼Ó¿Ø¼þµÄAttributesÊôÐÔ
¡¡¡¡¶ÔÓÚÆÕͨ°´Å¥¾ÍÊÇ£ºButton1.Attributes.Add("onclick","MyFun();");
¡¡¡¡Ö»ÄÜÔÚOnloadÖлòÀàËÆÓÚonloadµÄ³õʼ»¯¹ý³ÌÖÐÌí¼Ó²ÅÓÐЧ¡£¶øÇÒÊÇÏÈÖ´Ðнű¾º¯Êý£¬ÎÞ·¨¸Ä±äÖ´ÐÐ˳Ðò¡£
×¢Ò⣬ÒÔÉÏËùÓз½·¨ÖУ¬ºǫ́´úÂ붼²»ÄÜÓÐת»¯µ±Ç°Ò³µÄ´úÂ룬±ÈÈçRedirectµÈ£¬Òª°Ñתҳ´úÂë·ÅÔÚ½ ......
asp.net ÃÜÂë»Ø´«ºó£¬²»¼û µÄ½â¾ö°ì·¨
<asp:UpdatePanel ID="UpdatePanel5" runat="server">
<ContentTemplate>
<asp:TextBox runat="server" ID="OldPassword" TextMode="Password" AutoPostBack="true" class="txtinput" ontextchanged="OldPassword_TextChanged" ></asp:TextBox><br/>
&nb ......
ʹÓÃinput¿Ø¼þonclick´«µÝjson±È½Ï¼òµ¥£¬
ʹÓÃasp:Button ·þÎñÆ÷¿Ø¼þonclick»á»Ø·¢Ë¢ÐÂÒ³ÃæʹjsonµÄÖµ¶ªÊ§¡£
ÔÚHandler1.ashxÖÐʹÓþ²Ì¬±äÁ¿´æ´¢µ±Á½¸öÈËͬʱ²Ù×÷µÄʱºò»á³öÏÖÎÊÌ⣬Èç¹ûÄúÓкõĽâ¾ö°ì·¨£¬Ï£ÍûÄÜÓÚ´ó¼Ò·ÖÏí¡£
ÒÔÏ´úÂë´ó¶àÀ´Ô´ÓÚÍøÉÏ£¬Ôڴ˸Ðл×÷Õß¡£
//ǰ̨
<script src="JS/json2.js" type="text/javascript"></script>
<script language="javascript" type="text/javascript">
var xmlHttp;
function createXMLHttpRequest()
{
if (window.ActiveXObject)
{
xmlHttp = new ActiveXObject("Microsoft.XMLHTTP");
}
else if (window.XMLHttpRequest)
{
xmlHttp = new XMLHttpRequest();
}
}
function doJSON() {
createXMLHttpRequest();
var car = getCarObject();
xmlHttp.onreadystatechange = handleStateChange;
xmlHttp.open(" ......
ÔÚÁ˽âHTTP¶ÏµãÐø´«µÄÔÀí֮ǰ£¬ÏÈÀ´ËµËµHTTPÐÒ飬HTTPÐÒéÊÇÒ»ÖÖ»ùÓÚtcpµÄ¼òµ¥ÐÒ飬·ÖΪÇëÇóºÍ»Ø¸´Á½ÖÖ¡£ÇëÇóÐÒéÊÇÓÉ¿Í»§»ú(ä¯ÀÀÆ÷)Ïò·þÎñÆ÷£¨WEB SERVER£©Ìá½»ÇëÇóʱ·¢Ëͱ¨ÎĵÄÐÒé¡£»Ø¸´ÐÒéÊÇÓÉ·þÎñÆ÷(web server)£¬Ïò¿Í»§»ú(ä¯ÀÀÆ÷)»Ø¸´±¨ÎÄʱµÄÐÒé¡£ÇëÇóºÍ»Ø¸´ÐÒ鶼ÓÉÍ·ºÍÌå×é³É¡£Í·ºÍÌåÖ®¼äÒÔÒ»ÐпÕÐÐΪ·Ö¸ô¡£
ÒÔÏÂÊÇÒ»¸öÇëÇó±¨ÎÄÓëÏàÓ¦µÄ»Ø¸´±¨ÎĵÄÀý×Ó£º
GET /image/index_r4_c1.jpg HTTP/1.1
Accept: */*
Referer: http://192.168.3.120:8080
Accept-Language: zh-cn
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.0.3705)
Host: 192.168.3.120:8080
Connection: Keep-Alive
HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Tue, 24 Jun 2003 05:39:40 GMT
Content-Type: image/jpeg
Accept-Ranges: bytes
Last-Modified: Thu, 23 May 2002 03:05:40 GMT
ETag: "bec48eb862c21:934"
Content-Length: 2827
JFIF H H nbsp;C [1]
….
ÏÂÃæÎÒÃǾÍÀ´ËµËµ“¶ÏµãÐø´«”¡£
¹ËÃû˼Ò壬¶ÏµãÐø´«¾ÍÊÇÔÚÉÏÒ»´ÎÏÂÔØʱ¶Ï¿ªµÄλÖÿªÊ¼¼ÌÐøÏÂÔØ¡£ÔÚHTTPÐÒé ......
<asp:TemplateField HeaderText="²âÊÔ">
<ItemTemplate>
<asp:LinkButton ID="test" runat="server" OnClick="test_Click" OnClientClick='<%# string.Format("return confirmDelete(\"{0} {1}\");", DoEscape((string)Eval("FirstName")), DoEscape((string)Eval("LastName")) ) %>'>²âÊÔ</asp:LinkButton>
</ItemTemplate>
</asp:TemplateField>
......
×îÐÂÎÄÕ :