Home/ Questions/Q 8436315
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-10T07:08:51+00:00

My RESTful WCF service accepts XML request bodies from clients, most clients are PHP

  • 0

My RESTful WCF service accepts XML request bodies from clients, most clients are PHP applications.

The PHP applications encode their requests with htmlentities(), which is placed within the element tags. For example, a request to add a new user-account might look like this:

$body = "<user>
    <userName>" . htmlentities( $userName ) . "</userName>
</user>"

The system works fine, there have been zero errors with it, until today.

I looked through the logs and saw this request had failed:

<user>
    <userName>&egrave;eesu</userName>
</user>

with the following exceptions:

InvalidOperationException: “There is an error in XML document (4, 12).”
XmlException: “Character reference not valid. Line 4, position 12.”

(where line 4, position 12, refers to the <userName> element’s InnerText (i.e. the string &egrave;eesu;).

&egrave; is a valid HTML entity, but I understand that XML only defines a minimum set of character references (&amp;, &lt;, etc), and that XML expects all other characters to be in their document encoding representation instead, and so will reject things like &egrave;.

Can someone confirm this is the case? And if so, how can I get PHP to only encode XML-specific entities instead of HTML entities?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    I use htmlspecialchars( $userName, ENT_XML1 ) instead, which only converts a minimum of characters to entities without unnecessarily encoding them.

    @Jordan’s str_replace function does the same thing, however when you benchmark it it’s slower because htmlspecialchars is a native function.

    • 0