Quotes on quoted url on background-image from IE9 gets encoded instead of replaced

[brunomlopes]

I'm not 100% sure this is a bug, but it's an issue we've faced.
When inserting a background-image style attribute on IE9, the browser always quotes it with double quotes (").
However, when sanitizing, double quotes get translated into single quotes, and the single quotes on background-image get encoded.

Here's a test case:

        [Test]
        public void QuotedBackgroundImageFromIE9()
        {
            // Arrange
            var s = new HtmlSanitizer();

            // Act
            var htmlFragment = "<span style='background-image: url(\"/api/users/defaultAvatar\");'></span>";
            var actual = s.Sanitize(htmlFragment);

            // Assert
            var expected = "<span style=\"background-image: url('/api/users/defaultAvatar')\"></span>";
            Assert.That(actual, Is.EqualTo(expected).IgnoreCase);
        }

I was able to work around this, and will be improving the solution to avoid false matches, but it doesn't feel right:

            s.PostProcessNode +=
                (sender, args) =>
                {
                    if (!args.Node.HasStyle("background-image")) return;
                    args.Node.Style["background-image"] =
                        args.Node.Style["background-image"].Replace("url(%22", "url('").Replace("%22)", "')");
                };

Opinions?

[304NotModified]

I think this is a bug.

[mganss]

Yes, this bug was introduced when #44 was (improperly) fixed. Sorry.

[304NotModified]

Respect for the quick fix :)