Ticket #8959: contrib-comments-escaping.diff

File contrib-comments-escaping.diff, 5.2 KB (added by Jarek Zgoda, 10 years ago)

Removing calls to escape in templates

  • contrib/comments/templates/comments/approve.html

     
    44
    55{% block content %}
    66  <h1>Really make this comment public?</h1>
    7   <blockquote>{{ comment|escape|linebreaks }}</blockquote>
     7  <blockquote>{{ comment|linebreaks }}</blockquote>
    88  <form action="." method="POST">
    9     <input type="hidden" name="next" value="{{ next|escape }}" id="next">
     9    <input type="hidden" name="next" value="{{ next }}" id="next">
    1010    <p class="submit">
    1111      <input type="submit" name="submit" value="Approve"> or <a href="{{ comment.permalink }}">cancel</a>
    1212    </p>
    1313  </form>
    14 {% endblock %}
    15  No newline at end of file
     14{% endblock %}
  • contrib/comments/templates/comments/reply_preview.html

     
    99      <h1>Please correct the error{{ form.errors|pluralize }} below</h1>
    1010    {% else %}
    1111      <h1>Preview your comment</h1>
    12       <blockquote>{{ comment|escape|linebreaks }}</blockquote>
     12      <blockquote>{{ comment|linebreaks }}</blockquote>
    1313      <p>
    1414        and <input type="submit" name="submit" value="Post your comment" id="submit"> or make changes:
    1515      </p>
  • contrib/comments/templates/comments/preview.html

     
    99      <h1>Please correct the error{{ form.errors|pluralize }} below</h1>
    1010    {% else %}
    1111      <h1>Preview your comment</h1>
    12       <blockquote>{{ comment|escape|linebreaks }}</blockquote>
     12      <blockquote>{{ comment|linebreaks }}</blockquote>
    1313      <p>
    1414        and <input type="submit" name="submit" value="Post your comment" id="submit"> or make changes:
    1515      </p>
     
    3131      <input type="submit" name="submit" class="submit-preview" value="Preview">
    3232    </p>
    3333  </form>
    34 {% endblock %}
    35  No newline at end of file
     34{% endblock %}
  • contrib/comments/templates/comments/delete.html

     
    44
    55{% block content %}
    66  <h1>Really remove this comment?</h1>
    7   <blockquote>{{ comment|escape|linebreaks }}</blockquote>
     7  <blockquote>{{ comment|linebreaks }}</blockquote>
    88  <form action="." method="POST">
    9     <input type="hidden" name="next" value="{{ next|escape }}" id="next">
     9    <input type="hidden" name="next" value="{{ next }}" id="next">
    1010    <p class="submit">
    1111      <input type="submit" name="submit" value="Remove"> or <a href="{{ comment.permalink }}">cancel</a>
    1212    </p>
    1313  </form>
    14 {% endblock %}
    15  No newline at end of file
     14{% endblock %}
  • contrib/comments/templates/comments/moderation_queue.html

     
    5353              <input class="remove submit" type="submit" name="submit" value="Remove">
    5454            </form>
    5555          </td>
    56           <td>{{ comment.name|escape }}</td>
    57           <td>{{ comment.comment|truncatewords:"50"|escape }}</td>
    58           <td>{{ comment.email|escape }}</td>
    59           <td>{{ comment.url|escape }}</td>
     56          <td>{{ comment.name }}</td>
     57          <td>{{ comment.comment|truncatewords:"50" }}</td>
     58          <td>{{ comment.email }}</td>
     59          <td>{{ comment.url }}</td>
    6060          <td>
    6161            <img
    6262              src="{% admin_media_prefix %}img/admin/icon-{% if comment.user %}yes{% else %}no{% endif %}.gif"
    6363              alt="{% if comment.user %}yes{% else %}no{% endif %}"
    6464            />
    6565          </td>
    66           <td>{{ comment.ip_address|escape }}</td>
     66          <td>{{ comment.ip_address }}</td>
    6767          <td>{{ comment.submit_date|date:"F j, P" }}</td>
    6868        </tr>
    6969      {% endfor %}
  • contrib/comments/templates/comments/flag.html

     
    44
    55{% block content %}
    66  <h1>Really flag this comment?</h1>
    7   <blockquote>{{ comment|escape|linebreaks }}</blockquote>
     7  <blockquote>{{ comment|linebreaks }}</blockquote>
    88  <form action="." method="POST">
    9     <input type="hidden" name="next" value="{{ next|escape }}" id="next">
     9    <input type="hidden" name="next" value="{{ next }}" id="next">
    1010    <p class="submit">
    1111      <input type="submit" name="submit" value="Flag"> or <a href="{{ comment.permalink }}">cancel</a>
    1212    </p>
    1313  </form>
    14 {% endblock %}
    15  No newline at end of file
     14{% endblock %}
Back to Top