17

I'm trying to write a custom Javascript MVC3 Helper class foe my project, and one of the methods is supposed to escape C# strings to Javascript strings.

I know C# strings are UTF-16 encoded, and Javascript strings also seem to be UTF-16. No problem here.

I know some characters like backslash, single quotes or double quotes must be backslash-escaped on Javascript so:

\ becomes \\
' becomes \'
" becomes \"

Is there any other caveat I must be aware of before writing my conversion method ?

EDIT: Great answers so far, I'm adding some references from the answers in the question to help others in the future.

Alex K. suggested using System.Web.HttpUtility.JavaScriptStringEncode, which I marked as the right answer for me, because I'm using .Net 4. But this function is not available to previous .Net versions, so I'm adding some other resources here:

CR  becomes \r   // Javascript string cannot be broke into more than 1 line
LF  becomes \n   // Javascript string cannot be broke into more than 1 line
TAB becomes \t

Control characters must be Hex-Escaped

JP Richardson gave an interesting link informing that Javascript uses UCS-2, which is a subset of UTF-16, but how to encode this correctly is an entirely new question.

LukeH on the comments below reminded the CR, LF and TAB chars, and that reminded me of the control chars (BEEP, NULL, ACK, etc...).

Improve this question
1

4 Answers 4

Reset to default
35

(.net 4) You can;

System.Web.HttpUtility.JavaScriptStringEncode(@"aa\bb ""cc"" dd\tee", true);
== 
"aa\\bb \"cc\" dd\\tee"
Improve this answer
Sign up to request clarification or add additional context in comments.

3 Comments

Nice! I'm using MVC3 with .Net 4, so this is very useful!
What's the solution for users of .net version < 4?
Handily, this also works in .NET Core and .NET 5+, despite being in the System.Web namespace. Since .NET Core, this just forwards JavaScriptStringEncode to System.Text.Encodings.Web btw.
1

It's my understanding that you do have to be careful, as JavaScript is not UTF-16, rather, it's UCS-2 which I believe is a subset of UTF-16. What this means for you, is that any character that is represented than a higher code point of 2 bytes (0xFFFF) could give you problems in JavaScript.

In summary, under the covers, the engine may use UTF-16, but it only exposes UCS-2 like methods.

Great article on the issue: http://mathiasbynens.be/notes/javascript-encoding

Improve this answer

1 Comment

So, how could we safely transform the C# UTF-16 into UCS-2 in order to encode the string the right way ?
0

Just use Microsoft.JScript.GlobalObject.escape

Found it here: http://forums.asp.net/p/1308104/4468088.aspx/1?Re+C+equivalent+of+JavaScript+escape+

Improve this answer

Comments

0

Instead of using JavaScriptStringEncode() method, you can encode server side using:

HttpUtility.UrlEncode()

When you need to read the encoded string client side, you have to call unescape() javascript function before using the string.

Improve this answer

2 Comments

Why would you choose to do it this way?
My string is not url, why do I use UrlEncode. It seems silly. But I believe it will work.

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.