Bug
The special character '&' is URL sanitized to 'amp' in ArcGIS Enterprise Sites on links within additional resources of a content item.
| Bug ID Number | BUG-000159969 |
|---|---|
| Submitted | July 19, 2023 |
| Last Modified | June 5, 2024 |
| Applies to | Portal for ArcGIS |
| Version found | 11.1 |
| Operating System | Windows Server |
| Operating System Version | N/A |
| Status | Will Not Be Addressed |
Additional Information
The matter at hand concerns a character that requires careful handling: the '&' symbol. It undergoes conversion for several important reasons: Preventing HTML Entity Injection: By converting the '&', the risk of HTML entity injection is reduced. This is crucial for maintaining the integrity and security of our web content. Ensuring JavaScript stability: The correct usage of the ampersand is paramount to avoiding issues with JavaScript. Incorrect utilization can lead to unexpected behaviors or script failures, and the approach safeguards against these scenarios. Mitigating harmful query parameters: The conversion also plays a role in thwarting the injection of malicious or harmful query parameters. This proactive measure helps maintain the reliability of data handling. It is notable that this might create some inconvenience. It is important to note that these sanitation rules are in place to provide a secure environment for all users. Respective understanding and cooperation in this matter are greatly appreciated.Workaround
There is no workaround except for manually deleting from the link the 'amp' letters added automatically by the system.
Steps to Reproduce
Bug ID: BUG-000159969
Software:
- Portal for ArcGIS
Get notified when the status of a bug changes
Discover more on this topic
Search for related information
Find training related to this topic
Explore ideas and give feedback
Get help from ArcGIS experts
Download the Esri Support App