decodeURIComponent vs unescape, what is wrong with unescape?

by

What I want to know is what is wrong with escape/unescape ?

They’re not “wrong” as such, they’re just their own special string format which looks a bit like URI-parameter-encoding but actually isn’t. In particular:

  • ‘+’ means plus, not space
  • there is a special “%uNNNN” format for encoding Unicode UTF-16 code points, instead of encoding UTF-8 bytes

So if you use escape() to create URI parameter values you will get the wrong results for strings containing a plus, or any non-ASCII characters.

escape() could be used as an internal JavaScript-only encoding scheme, for example to escape cookie values. However now that all browsers support encodeURIComponent (which wasn’t originally the case), there’s no reason to use escape in preference to that.

There is only one modern use for escape/unescape that I know of, and that’s as a quick way to implement a UTF-8 encoder/decoder, by leveraging the UTF-8 processing in URIComponent handling:

utf8bytes= unescape(encodeURIComponent(unicodecharacters));
unicodecharacters= decodeURIComponent(escape(utf8bytes));

More Related Contents:

  1. HTML-encoding lost when attribute read from input field
  2. Escape string for use in Javascript regex [duplicate]
  3. How to load up CSS files using Javascript?
  4. ArrayBuffer to base64 encoded string
  5. jQuery document.createElement equivalent?
  6. Using Javascript’s atob to decode base64 doesn’t properly decode utf-8 strings
  7. Regex to match all instances not inside quotes
  8. How to escape a JSON string containing newline characters using JavaScript?
  9. Redirect parent window from an iframe action
  10. Unescape HTML entities in JavaScript?
  11. Javascript – How to show escape characters in a string? [duplicate]
  12. Change :hover CSS properties with JavaScript
  13. Capture iframe load complete event
  14. How to escape JavaScript in JSP?
  15. Retrieving binary file content using Javascript, base64 encode it and reverse-decode it using Python
  16. Making a javascript string sql friendly
  17. Escape JavaScript in Expression Language
  18. jQuery: how to change tag name?
  19. Strange Unexpected token ILLEGAL in JavaScript [closed]
  20. How do I escape a string inside JavaScript code inside an onClick handler?
  21. Are all JSON objects also valid JavaScript objects?
  22. Modifying a query string without reloading the page
  23. Encoding UTF-8 when exporting HTML table to Excel
  24. avoid to escape a special characters in javascript
  25. How to remove backslash escaping from a javascript var?
  26. Upload Base64 Image Facebook Graph API
  27. Alternative to DOMNodeInserted
  28. Javascript – Replacing the escape character in a string literal
  29. How to properly escape characters in regexp
  30. How to properly escape characters in regexp

Leave a Comment