special characters within parameters are made html safe

Question

special characters within parameters are made html safe

imduffy15 opened this issue 8 years ago · comments

Mustache appears to be doing some escaping on parameters by default.

The following was passed as a parameter:

jdbc:postgresql://localhost:5432/database?ssl=true&sslfactory=org.postgresql.ssl.NonValidatingFactory

It was then used as an environment variable:

TaupageConfig:
    environment:
        JDBC_URL: "{{Arguments.jdbcUrl}}"

In the instance userdata script the following was seen:

jdbc:postgresql://localhost:5432/database?ssl=true&amp;sslfactory=org.postgresql.ssl.NonValidatingFactory

Note the & which resulted in the application failing to deploy.

Workaround for now, was to use JDBC_URL: "{{{Arguments.jdbcUrl}}}" as the environment variable not the three braces instead of two. Didn't see this workaround documented anywhere.

Henning Jacobs · Answer 1 · Tue Mar 28 2017 20:21:48 GMT+0800 (China Standard Time)

@imduffy15 yes, I was aware of this problem, but I never ran into it (never passed something with "&" as parameter). Feel free to open a PR here or in stups-docs to document the workaround.

Ian Duffy · Answer 2 · Tue Mar 28 2017 20:36:30 GMT+0800 (China Standard Time)

PR opened, closing.

zalando-stups/documentation#114