Directive values are not quote-escaped

[adragus-inviqa]

This is still the case: http://stackoverflow.com/questions/23925826/magento-widgets-truncate-fields-containing-quotes

I can imagine why this is happening.
The fix is up to you. There are several ways to tackle this.

Steps to reproduce

1. Search for or create a widget which has a text config/parameter.
2. Insert that widget into a CMS page/block using the editor, setting the value to There is no "escape"!

Expected result

1. A directive inserted as {{... my_text_value="There is no "escape"!"}} <-- this looks wrong, ofc, but it's just to show you what I mean.

Actual result

1. The directive is inserted as {{... my_text_value="There is no "}}
2. Sigh.

[piotrekkaminski]

reproduced. Internal issue MAGETWO-54243

[developer-lindner]

Does this fix product attributes also?

If i insert an image (in product's description) through the UI in backend i see the "right" media directive syntax, after saving there is just a mess left...

[veloraven]

Closed as has been already fixed in 3ff19bf c2fd296 0859c7d

[Ctucker9233]

@veloraven @magento-team What version of Magento will this fix be included in?

[sashas777]

@veloraven Also need some kind of escape when value is cms directive.
For example:
{{widget type="Custom\Custom\Block\Widget" background="{{media url="wysiwyg/14.jpg"}}" }}
When you click "Show/Hide Editor" at the cms page with this widget it breaks.

Need something at the: lib/web/mage/adminhtml/wysiwyg/tiny_mce/setup.js

for decodeDirectives & necodeDirectives functions

[magento-team]

Internal ticket to track issue progress: MAGETWO-70436