ASP.NET controls and AntiXss

I'm doing some AntiXSS work. The user inputs some text which is then put through

Microsoft.Security.Application.Encoder.HtmlEncode();

and saved to the database.

This text can then be displayed in either a label or a textbox.

If I put the encoded text into the text property of a label it displays fine. If I assign it to the text property of a textbox it's displayed in it's encoded form.

How can I display the text correctly in the textbox and the label? Does the library offer any decode mechanisms?

Because of project requirements I cannot change either the library or the fact that it's encoded on the input.

Solution

You can use Server.HtmlDecode or HttpUtility.HtmlDecode.

Visual Studio Opens Blank Browser Page
Aspire.StackExchange.Redis.OutputCaching cors error for cache data
ASP.NET 5: How to reload strongly typed configuration on change
Using a date picker on a BoundField DataField
How to prevent HTTP GET for ASP.NET events? or How to check for Request.Type on all events?
How to debug this issue with MapRequestHandler, ASP.NET and the cookieless config
How to pass ODataQueryOptions to Mediator while allowing input for OData queries only in Swagger?
Alachisoft Ncache configuration issues
How to reduce size of label in Mudblazor checkbox and radio button?
ASP.NET controls cannot be referenced in code-behind in Visual Studio 2008
How to set the page title and meta info in a view in ASP.NET MVC
C# How to post an entity with a file as form-data from HttpClient to API?
Adding reference to another project from visual studio code
Using GridView inside UpdatePanel
The client and server cannot communicate, because they do not possess a common algorithm - ASP.NET C# VB Visual Basic IIS TLS 1.0 / 1.1 / 1.2
ASP.NET Required Field Validator not working
Display FullName on DropdownListFor but submit Id - ASP.NET MVC C#
What is equivalent of HostingEnvironment.ShutdownReason in ASP.NET Core?
How to get a .Net Framework SignalR client to connect to .Net Core SignalR Server?
Windows Azure or Amazon EC2 for ASP.NET MVC Development?
What are the technical differences between Cassini and IIS for a development environment?
Untrusted Certificate Error when connecting to SQL Server running in Docker from .NET 7 API in VS2022
Finding controls inside nested master pages
Why is my ASP.NET application throwing a ThreadAbortException?
The name `addtaghelper` does not exist in the current context
DataSet Value in Jquery C#
How to validate uploaded file in ASP.Net Core
How to format numbers as string data-types while exporting to Excel in ASP.NET?
jQuery .blur function isn't working
EF Core filtered Include not working with Select transformation