There will be no mess. You'll just get <span data-author="[[Alessandro Manzoni]]"></span> (did you even lift^Wtry, bro? :)), at least at Wikipedia that is what I get. If it could pass raw HTML into attributes, you'd get a huge hole for XSSploits lovers.
On Wed, Jan 23, 2013 at 1:03 AM, Alex Brollo alex.brollo@gmail.com wrote:
2013/1/22 Paul Selitskas p.selitskas@gmail.com
What do you mean by
any wikicode (template call, parameter, link....) present into the value of infobox parameter breaks the stuff, since it is parsed
and
expanded by parser with unpredictable results.
If your {{{author}}} doesn't have anything and it's aсceptable, then make it {{{author|}}}, or {{#if:{{{author|}}}|<span .....}}. Please clarify
the
statement above.
Imagine that my infobox had a parameter author=, and imagine a "clean" content as this:
author=Alessandro Manzoni
With my template code: <span data-author="{{{author}}}"></span>
I get into parsed html: <span data-author="Alessandro Manzoni"></span>
Perfect!
But imagine that my template parameter is: author=[[Alessandro Manzoni]]
When I pass the parameter content to <span data-author="{{{author}}}"></span>, I dont' get into html page what I'll like: <span data-author="[[Alessandro Manzoni]]"></span>
since wikicode [[Alessandro Manzoni]] will be interpreted by the server, and parsed/expanded into a html link as usual, resulting into a big mess.
The same occurs for any wikicode and/or html passed into a infobox template parameter.
Alex brollo _______________________________________________ Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l