From: Tom Hughes <tom@compton.nu>
Date: Tue, 22 Nov 2011 22:45:24 +0000 (+0000)
Subject: Don't escape HTML in the message shown to anonymous users
X-Git-Tag: live~6013
X-Git-Url: https://git.openstreetmap.org/rails.git/commitdiff_plain/0033fcbf1286ebad5c9d9afe3d516f400d90af64?ds=sidebyside

Don't escape HTML in the message shown to anonymous users
---

diff --git a/app/views/site/edit.html.erb b/app/views/site/edit.html.erb
index 37531a4a7..207cbdef4 100644
--- a/app/views/site/edit.html.erb
+++ b/app/views/site/edit.html.erb
@@ -6,9 +6,8 @@
 </p>
 <% elsif !@user.data_public? %>
 <p><%= t 'site.edit.not_public' %></p>
-<p><%= t 'site.edit.not_public_description', 
-:user_page => (link_to t('site.edit.user_page_link'), {:controller => 'user', :action => 'account', :display_name => @user.display_name, :anchor => 'public'}) %></p>
-<p><%= t 'site.edit.anon_edits', :link => link_to(t('site.edit.anon_edits_link_text'), t('site.edit.anon_edits_link')) %></p>
+<p><%= raw t 'site.edit.not_public_description', :user_page => (link_to t('site.edit.user_page_link'), {:controller => 'user', :action => 'account', :display_name => @user.display_name, :anchor => 'public'}) %></p>
+<p><%= raw t 'site.edit.anon_edits', :link => link_to(t('site.edit.anon_edits_link_text'), t('site.edit.anon_edits_link')) %></p>
 <% else %>
 <% content_for :greeting do %>
 <% if @user and !@user.home_lon.nil? and !@user.home_lat.nil? %>
diff --git a/app/views/user/account.html.erb b/app/views/user/account.html.erb
index 0da8b2530..988cd9121 100644
--- a/app/views/user/account.html.erb
+++ b/app/views/user/account.html.erb
@@ -129,7 +129,7 @@
 <% unless @user.data_public? %>
 <a name="public"></a>
 <h2><%= t 'user.account.public editing note.heading' %></h2>
-<%= t 'user.account.public editing note.text' %>
+<%= raw t 'user.account.public editing note.text' %>
   <%= button_to t('user.account.make edits public button'), :action => :go_public %>
 <% end %>
 <br/>