In the daily content operation and website development of Anqi CMS, we often need to handle URL links to ensure they are both secure and effective, and can be correctly parsed by browsers and search engines.This is an indispensable part of URL escaping (or encoding).urlencodeandiriencodeThey can all help us with URL escaping, but their purposes and processing methods are different in practical applications.

Understanding the necessity of URL escaping

Before we delve into the differences between these two filters, it is first necessary to understand why URL escaping is so important. The structure of URL (Uniform Resource Locator) is fixed, and certain characters have special meanings, such as/Used to separate paths,?Indicates the start of query parameters,&Used to connect different query parameters,=Used to assign parameter values, etc.

When our URL contains user input, Chinese characters, spaces, or other special characters, if they are not escaped, these characters may:

  1. Destroy the URL structureFor example, a URL containing&The character's parameter value will be incorrectly parsed as two separate parameters.
  2. Cause security issuesEnglish: Malicious code may be injected via unescaped URLs, causing security vulnerabilities such as cross-site scripting (XSS).
  3. English: It may cause compatibility issues.Different browsers or servers may have different handling of non-standard characters, resulting in the link being invalid.

Therefore, URL encoding is to convert these characters with special meanings or unsafe into a kind of%XXThe format of percentage encoding ensures the uniformity and security of URLs. The template engine of Anqi CMS is built-in with these tools, making our development work more convenient.

urlencode:Full and strict URL encoding

urlencodeThe filter plays the role of a 'comprehensive guardian' in the Anqi CMS.Its main responsibility is to percent-encode almost all special characters in the URL, ensuring that the generated URL can be safely and accurately parsed in any environment.

Imagine you are dynamically building a link that includes the keywords entered by the user in the search box, which may include spaces, Chinese characters, and even some punctuation marks.If you directly append this content to the URL, it may lead to link failure or unexpected issues.urlencodeThis is where it comes into play. It will convert spaces to%20, and Chinese characters to multiple%XXSequence, as well as other special characters (such as colons, slashes, question marks, etc.) are also encoded accordingly.

When to use priorityurlencode?

  • Handling the value of query parametersWhen any user input or dynamically generated data is used as the value of a URL query parameter, useurlencodeIt is**practical**, because it can completely avoid ambiguity and security risks.
  • Path segment contains special characters: If the URL path segment (/path/to/somethingofsomething) may contain non-standard characters, useurlencodeto ensure the path is correctly identified.
  • High security requirementsIn any scenario where strict URL security is required,urlencodeit is the default and most recommended choice, providing the strongest protection.

In the templates of Anqi CMS, useurlencodeVery intuitive, just pass the variable to be encoded through the pipe symbol:

{% set originalUrl = "http://www.example.org/foo?a=b&c=d" %}
<a href="{{ originalUrl|urlencode }}">访问页面</a>

This code will output a fully encoded URL, even if the original URL contains:///?/=/&English characters, they will also be escaped into percent-encoded forms, for example `http%3A%2F%2Fwww.example