git.openstreetmap.org Git - rails.git/commit

]> git.openstreetmap.org Git - rails.git/commit

author	Andy Allan <git@gravitystorm.co.uk>
	Wed, 23 Jun 2021 15:26:50 +0000 (16:26 +0100)
committer	Andy Allan <git@gravitystorm.co.uk>
	Wed, 23 Jun 2021 19:10:55 +0000 (20:10 +0100)
commit	24f6aeda6a1b657d68a4e66f3a34d14ef408d652
tree	39f75abd34183b895f0bf1a69eb61414b00478a5	tree \| snapshot
parent	f6818bb2ed53f18548e301b3c120139851ad2e11	commit \| diff

Use hash-based flash objects to render complex flash messages

Since flash objects can only be String, Hash or Array (notably excluding SafeBuffers), then this approach is necessary to render complex html in a safe manner.

Each local can be treated as an (unsafe) string, and therefore escaped normally when rendered into the template. The template (and translation strings) can
contain html since they are no longer stored in the flash as a plain string.

Fixes #3215

app/controllers/confirmations_controller.rb		diff \| blob \| history
app/helpers/application_helper.rb		diff \| blob \| history
app/views/confirmations/_resend_success_flash.html.erb	[new file with mode: 0644]	blob
app/views/layouts/_flash.html.erb		diff \| blob \| history
test/controllers/confirmations_controller_test.rb		diff \| blob \| history
test/system/confirmation_resend.rb	[new file with mode: 0644]	blob

The OpenStreetMap web site

RSS Atom