Export (0) Print
Expand All

HttpEncoder.HtmlEncode Method

Encodes a string into an HTML-encoded string.

Namespace:  System.Web.Util
Assembly:  System.Web (in System.Web.dll)

protected internal virtual void HtmlEncode(
	string value,
	TextWriter output


Type: System.String

The string to encode.

Type: System.IO.TextWriter

The text writer to write the encoded value to.


output is null.

The following table lists the character sequences that the ASP.NET encoding logic can decode.


Encoded as

< (left angle bracket)


> (right angle bracket)


" (double quotation marks)


& (ampersand)


\ (backslash)


ASCII characters from 160 to 255

&#NNN;, where NNN is the three-digit decimal character code

If you override the HtmlEncode method, you must produce output that is also safe within double-quoted or single-quoted HTML attributes. This accommodates parsing by the Razor engine, where markup and code can be combined, such as <tag attr="@value">. In addition, the @ operator is not context-aware when processed by the Razor engine, therefore it calls HtmlEncode rather than HtmlAttributeEncode.

.NET Framework

Supported in: 4.6, 4.5, 4

Windows 8.1, Windows Server 2012 R2, Windows 8, Windows Server 2012, Windows 7, Windows Vista SP2, Windows Server 2008 (Server Core Role not supported), Windows Server 2008 R2 (Server Core Role supported with SP1 or later; Itanium not supported)

The .NET Framework does not support all versions of every platform. For a list of the supported versions, see .NET Framework System Requirements.

© 2014 Microsoft