This is likely old news for many people, but I hadn't come across the HTTP Content-Disposition response header until recently, so here's my notes about it. The idea is to get the browser to ask the user to save a dynamically generated document they've downloaded, with a useful default filename for the downloaded file.

Continue Reading...

With the increasing use of Ajax to handle the majority of the data transfer between web pages and the server, there are a number of occasions where the server needs to return a JSON response to the page, which will be intercepted by some Javascript, and parts of that response will be injected into the page as new chunks of HTML for display.

Continue Reading...

A note about an HTML escaping gotcha in JSTL which can lead to XSS security problems.

Continue Reading...

© Me. Best viewed with a sense of humour and a beer in hand.