XML
Functions
- EncodeForXML()
Encodes the given string for safe output in XML to reduce the risk of Cross Site Scripting attacks.
- EncodeForXMLAttribute()
Encodes the given string for safe output in XMLAttribute to reduce the risk of Cross Site Scripting attacks.
- EncodeForXPath()
Encodes the given string for safe use in an XPath Query.
- ESAPIEncode()
Deprecated legacy function. Use context-specific functions (e.g., encodeForHTML) instead.
- GuardEncode()
Deprecated legacy function. Use context-specific functions (e.g., encodeForHTML) instead. Encodes data for a specific output context. This is a vital defense against Cross-Site Scripting (XSS) and injection attacks by ensuring characters are treated as data rather than executable code.
- IsXML()
Determines whether a string is well-formed XML text.
- IsXmlAttribute()
Determines whether the function parameter is an XML Document Object Model (DOM) attribute node.
- IsXmlDoc()
Determines whether a function parameter is an Extended Markup language (XML) document object.
- IsXmlElem()
Determines whether a function parameter is an Extended Markup language (XML) document object element.
- IsXmlNode()
Determines whether the function parameter is an XML document object node.
- IsXmlRoot()
Determines whether a function parameter is the root element of an Extended Markup language (XML) document object.
- XmlChildPos()
Gets the position of a child element within an XML document object.
- XmlElemNew()
Creates an XML document object element
- XmlFormat()
Escapes special XML characters in a string, so that the string is safe to use with XML.
- XmlGetNodeType()
Determines the type of an XML document object node.
- XmlNew()
Creates an XML document object.
- XmlParse()
Converts an XML document that is represented as a string variable into an XML document object.
- XmlSearch()
Uses an XPath language expression to search an XML document object.
- XmlTransform()
Applies an Extensible Stylesheet Language Transformation (XSLT) to an XML document object that is represented as a string variable. An XSLT converts an XML document to another format or representation by applying an Extensible Stylesheet Language (XSL) stylesheet to it.
- XmlValidate()
Uses a Document Type Definition (DTD) or XML Schema to validate an XML text document or an XML document object.
Tags
- <cfxml>
Creates a CFML XML document object that contains the markup in the tag body. This tag can include XML and CFML tags. Lucee processes the CFML code in the tag body, then assigns the resulting text to an XML document object variable.
Methods
- string.encodeForXML()
Encodes the given string for safe output in XML to reduce the risk of Cross Site Scripting attacks.
- string.encodeForXMLAttribute()
Encodes the given string for safe output in XMLAttribute to reduce the risk of Cross Site Scripting attacks.
- string.encodeForXPath()
Encodes the given string for safe use in an XPath Query.
- xml.childPos()
Gets the position of a child element within an XML document object. The position, in an XmlChildren array, of the Nth child that has the specified name.
- xml.elemNew()
Creates an XML document object element
- xml.getNodeType()
Determines the type of an XML document object node.
- xml.search()
Uses an XPath language expression to search an XML document object.
- xml.transform()
Applies an Extensible Stylesheet Language Transformation (XSLT) to an XML document object that is represented as a string variable. An XSLT converts an XML document to another format or representation by applying an Extensible Stylesheet Language (XSL) stylesheet to it.
Objects
Guides
- Read XML with a listener Model (SAX)
Lucee not only allows you to convert an XML file to an object tree (DOM) but also supports an event-driven model (SAX).
- XML Fast And Easy, using SAX - Listener Functions
This document explains how to use XML parsing in Lucee.