From: Tom Hughes Date: Thu, 2 Sep 2010 23:58:23 +0000 (+0100) Subject: Mark some strings that shouldn't be escaped as raw X-Git-Tag: live~6127 X-Git-Url: https://git.openstreetmap.org/rails.git/commitdiff_plain/22594361d5abd2a6ee18e290058d9d39d7d761ec Mark some strings that shouldn't be escaped as raw --- diff --git a/app/helpers/application_helper.rb b/app/helpers/application_helper.rb index 6e2ecd323..b2ce9b003 100644 --- a/app/helpers/application_helper.rb +++ b/app/helpers/application_helper.rb @@ -37,7 +37,7 @@ module ApplicationHelper js << javascript_strings_for_key("javascripts") js << "\n" - return js + return raw(js) end def style_rules diff --git a/app/helpers/geocoder_helper.rb b/app/helpers/geocoder_helper.rb index 8cbf4e965..082f9e530 100644 --- a/app/helpers/geocoder_helper.rb +++ b/app/helpers/geocoder_helper.rb @@ -3,9 +3,9 @@ module GeocoderHelper html_options = {} #html_options[:title] = strip_tags(result[:description]) if result[:description] if result[:min_lon] and result[:min_lat] and result[:max_lon] and result[:max_lat] - html_options[:href] = "?minlon=#{result[:min_lon]}&minlat=#{result[:min_lat]}&maxlon=#{result[:max_lon]}&maxlat=#{result[:max_lat]}" + html_options[:href] = raw("?minlon=#{result[:min_lon]}&minlat=#{result[:min_lat]}&maxlon=#{result[:max_lon]}&maxlat=#{result[:max_lat]}") else - html_options[:href] = "?mlat=#{result[:lat]}&mlon=#{result[:lon]}&zoom=#{result[:zoom]}" + html_options[:href] = raw("?mlat=#{result[:lat]}&mlon=#{result[:lon]}&zoom=#{result[:zoom]}") end html = "" @@ -19,6 +19,7 @@ module GeocoderHelper end html << result[:suffix] if result[:suffix] - return html + + return raw(html) end end diff --git a/app/views/changeset/list.html.erb b/app/views/changeset/list.html.erb index 22a798ffe..c7cf63353 100644 --- a/app/views/changeset/list.html.erb +++ b/app/views/changeset/list.html.erb @@ -1,5 +1,5 @@

<%= @heading %>

-

<%= @description %>

+

<%= raw(@description) %>

<%= render :partial => 'changeset_paging_nav' %> diff --git a/app/views/diary_entry/_diary_comment.html.erb b/app/views/diary_entry/_diary_comment.html.erb index ef5c601e8..da10c88ac 100644 --- a/app/views/diary_entry/_diary_comment.html.erb +++ b/app/views/diary_entry/_diary_comment.html.erb @@ -1,5 +1,5 @@ <%= user_thumbnail diary_comment.user %> -

<%= t('diary_entry.diary_comment.comment_from', :link_user => (link_to h(diary_comment.user.display_name), :controller => 'user', :action => 'view', :display_name => diary_comment.user.display_name), :comment_created_at => l(diary_comment.created_at, :format => :friendly)) %>

+

<%= raw(t('diary_entry.diary_comment.comment_from', :link_user => (link_to h(diary_comment.user.display_name), :controller => 'user', :action => 'view', :display_name => diary_comment.user.display_name), :comment_created_at => l(diary_comment.created_at, :format => :friendly))) %>

<%= htmlize(diary_comment.body) %> <% if_administrator(:span) do %> <%= link_to t('diary_entry.diary_comment.hide_link'), {:action => 'hidecomment', :display_name => diary_comment.diary_entry.user.display_name, :id => diary_comment.diary_entry.id, :comment => diary_comment.id}, {:confirm => t('diary_entry.diary_comment.confirm')} %> diff --git a/app/views/diary_entry/_diary_entry.html.erb b/app/views/diary_entry/_diary_entry.html.erb index d6e21869f..02100c74d 100644 --- a/app/views/diary_entry/_diary_entry.html.erb +++ b/app/views/diary_entry/_diary_entry.html.erb @@ -1,7 +1,7 @@ <%= link_to h(diary_entry.title), :action => 'view', :display_name => diary_entry.user.display_name, :id => diary_entry.id %>
- <%= htmlize(diary_entry.body) %> + <%= raw(htmlize(diary_entry.body)) %>
<% if diary_entry.latitude and diary_entry.longitude %> @@ -9,7 +9,7 @@
<% end %> -<%= t 'diary_entry.diary_entry.posted_by', :link_user => (link_to h(diary_entry.user.display_name), :controller => 'user', :action => 'view', :display_name => diary_entry.user.display_name), :created => l(diary_entry.created_at, :format => :friendly), :language_link => (link_to h(diary_entry.language.name), :controller => 'diary_entry', :action => 'list', :language => diary_entry.language_code) %> +<%= raw(t 'diary_entry.diary_entry.posted_by', :link_user => (link_to h(diary_entry.user.display_name), :controller => 'user', :action => 'view', :display_name => diary_entry.user.display_name), :created => l(diary_entry.created_at, :format => :friendly), :language_link => (link_to h(diary_entry.language.name), :controller => 'diary_entry', :action => 'list', :language => diary_entry.language_code)) %> <% if params[:action] == 'list' %>
diff --git a/app/views/geocoder/_description.html.erb b/app/views/geocoder/_description.html.erb index b6a6d82fb..88b3bcc5f 100644 --- a/app/views/geocoder/_description.html.erb +++ b/app/views/geocoder/_description.html.erb @@ -1,8 +1,8 @@ <% @sources.each do |source| %> <% if source[:types] %> -

<%= t("geocoder.description.title.#{source[:name]}", :types => t("geocoder.description.types.#{source[:types]}")) %>

+

<%= raw(t("geocoder.description.title.#{source[:name]}", :types => t("geocoder.description.types.#{source[:types]}"))) %>

<% else %> -

<%= t("geocoder.description.title.#{source[:name]}") %>

+

<%= raw(t("geocoder.description.title.#{source[:name]}")) %>

<% end %>
<%= image_tag "searching.gif", :class => "search_searching" %> diff --git a/app/views/geocoder/_search.html.erb b/app/views/geocoder/_search.html.erb index 7aac94f8e..8a58c0349 100644 --- a/app/views/geocoder/_search.html.erb +++ b/app/views/geocoder/_search.html.erb @@ -1,5 +1,5 @@ <% @sources.each do |source| %> -

<%= t "geocoder.search.title.#{source}" %>

+

<%= raw(t "geocoder.search.title.#{source}") %>

<%= image_tag "searching.gif", :class => "search_searching" %>
diff --git a/app/views/layouts/_flash.html.erb b/app/views/layouts/_flash.html.erb index da559d55c..0380a5094 100644 --- a/app/views/layouts/_flash.html.erb +++ b/app/views/layouts/_flash.html.erb @@ -1,11 +1,11 @@ <% if flash[:error] %> -
<%= flash[:error] %>
+
<%= raw flash[:error] %>
<% end %> <% if flash[:warning] %> -
<%= flash[:warning] %>
+
<%= raw flash[:warning] %>
<% end %> <% if flash[:notice] %> -
<%= flash[:notice] %>
+
<%= raw flash[:notice] %>
<% end %> diff --git a/app/views/layouts/site.html.erb b/app/views/layouts/site.html.erb index 3a8e1f1c0..db3b4c6e3 100644 --- a/app/views/layouts/site.html.erb +++ b/app/views/layouts/site.html.erb @@ -14,7 +14,7 @@ <% if @user and @user.id %> - <%= t 'layouts.welcome_user', :user_link => (link_to h(@user.display_name), {:controller => 'user', :action => 'view', :display_name => @user.display_name}, :title => t('layouts.welcome_user_link_tooltip')) %> + <%= raw(t 'layouts.welcome_user', :user_link => (link_to h(@user.display_name), {:controller => 'user', :action => 'view', :display_name => @user.display_name}, :title => t('layouts.welcome_user_link_tooltip'))) %> <%= link_to t('layouts.welcome_user_link_tooltip'), {:controller => 'user', :action => 'view', :display_name => @user.display_name} %> | <%= yield :greeting %> <%= render :partial => "layouts/inbox" %> | @@ -83,11 +83,11 @@ <%= t 'layouts.intro_2' %>

- <%= t 'layouts.intro_3', - :ucl => link_to(t('layouts.intro_3_ucl'), "http://www.vr.ucl.ac.uk"), - :ic => link_to(t('layouts.intro_3_ic'), "http://www.imperial.ac.uk/"), - :bytemark => link_to(t('layouts.intro_3_bytemark'), "http://www.bytemark.co.uk"), - :partners => link_to(t('layouts.intro_3_partners'), t('layouts.intro_3_partners_url')) %> + <%= raw(t 'layouts.intro_3', + :ucl => link_to(t('layouts.intro_3_ucl'), "http://www.vr.ucl.ac.uk"), + :ic => link_to(t('layouts.intro_3_ic'), "http://www.imperial.ac.uk/"), + :bytemark => link_to(t('layouts.intro_3_bytemark'), "http://www.bytemark.co.uk"), + :partners => link_to(t('layouts.intro_3_partners'), t('layouts.intro_3_partners_url'))) %>

<% end %> diff --git a/app/views/message/inbox.html.erb b/app/views/message/inbox.html.erb index 897fb24ad..bcd2da33a 100644 --- a/app/views/message/inbox.html.erb +++ b/app/views/message/inbox.html.erb @@ -17,5 +17,5 @@ <% else %> -
<%= t'message.inbox.no_messages_yet', :people_mapping_nearby_link => link_to(t('message.inbox.people_mapping_nearby'), :controller => 'user', :action => 'view', :display_name => @user.display_name) %>
+
<%= raw(t'message.inbox.no_messages_yet', :people_mapping_nearby_link => link_to(t('message.inbox.people_mapping_nearby'), :controller => 'user', :action => 'view', :display_name => @user.display_name)) %>
<% end %> diff --git a/app/views/message/new.html.erb b/app/views/message/new.html.erb index f2005bb00..113e566d8 100644 --- a/app/views/message/new.html.erb +++ b/app/views/message/new.html.erb @@ -1,4 +1,4 @@ -

<%= t'message.new.send_message_to', :name => link_to(h(@to_user.display_name), {:controller => 'user', :action => 'view', :display_name => @to_user.display_name}) %>

+

<%= raw(t'message.new.send_message_to', :name => link_to(h(@to_user.display_name), {:controller => 'user', :action => 'view', :display_name => @to_user.display_name})) %>

<%= error_messages_for 'message' %> diff --git a/app/views/message/outbox.html.erb b/app/views/message/outbox.html.erb index afd1d2fc5..9662fdbce 100644 --- a/app/views/message/outbox.html.erb +++ b/app/views/message/outbox.html.erb @@ -1,4 +1,4 @@ -

<%= t'message.outbox.my_inbox', :inbox_link => link_to(t('message.outbox.inbox'), url_for(:controller => "user", :action => "inbox", :id => @user.display_name)) %>/<%= t'message.outbox.outbox' %>

+

<%= raw(t'message.outbox.my_inbox', :inbox_link => link_to(t('message.outbox.inbox'), url_for(:controller => "user", :action => "inbox", :id => @user.display_name))) %>/<%= t'message.outbox.outbox' %>

<%= t'message.outbox.you_have_sent_messages', :count => @user.sent_messages.size %> @@ -15,5 +15,5 @@ <% else %> -

<%= t'message.outbox.no_sent_messages', :people_mapping_nearby_link => link_to(t('message.outbox.people_mapping_nearby'), :controller => 'user', :action => 'view', :display_name => @user.display_name) %>
+
<%= raw(t'message.outbox.no_sent_messages', :people_mapping_nearby_link => link_to(t('message.outbox.people_mapping_nearby'), :controller => 'user', :action => 'view', :display_name => @user.display_name)) %>
<% end %> diff --git a/app/views/notifier/signup_confirm.text.html.erb b/app/views/notifier/signup_confirm.text.html.erb index c0883382e..5b7566fba 100644 --- a/app/views/notifier/signup_confirm.text.html.erb +++ b/app/views/notifier/signup_confirm.text.html.erb @@ -5,16 +5,17 @@

<%= t'notifier.signup_confirm_html.click_the_link' %>

-

<%= @url %>

+

<%= raw(link_to @url, @url) %>

-

<%= t'notifier.signup_confirm_html.introductory_video', :introductory_video_link => ('' + t('notifier.signup_confirm_html.video_to_openstreetmap') + '') %> <%= t'notifier.signup_confirm_html.more_videos', :more_videos_link => ('' + t('notifier.signup_confirm_html.more_videos_here') + '') %> +

<%= raw(t'notifier.signup_confirm_html.introductory_video', :introductory_video_link => link_to(t('notifier.signup_confirm_html.video_to_openstreetmap'), "http://showmedo.com/videos/video?name=1800000&fromSeriesID=180")) %> + <%= raw(t'notifier.signup_confirm_html.more_videos', :more_videos_link => link_to(t('notifier.signup_confirm_html.more_videos_here'), "http://showmedo.com/videos/series?name=mS2P1ZqS6")) %>

-

<%= t'notifier.signup_confirm_html.get_reading' %>

+

<%= raw(t'notifier.signup_confirm_html.get_reading') %>

-

<%= t'notifier.signup_confirm_html.ask_questions' %>

+

<%= raw(t'notifier.signup_confirm_html.ask_questions') %>

-

<%= t'notifier.signup_confirm_html.wiki_signup' %>

+

<%= raw(t'notifier.signup_confirm_html.wiki_signup') %>

-

<%= t'notifier.signup_confirm_html.user_wiki_page' %>

+

<%= raw(t'notifier.signup_confirm_html.user_wiki_page') %>

-

<%= t'notifier.signup_confirm_html.current_user' %>

+

<%= raw(t'notifier.signup_confirm_html.current_user') %>

diff --git a/app/views/oauth_clients/index.html.erb b/app/views/oauth_clients/index.html.erb index 91c71f90b..d698728f5 100644 --- a/app/views/oauth_clients/index.html.erb +++ b/app/views/oauth_clients/index.html.erb @@ -21,7 +21,7 @@ <% end %>

<%= t'oauth_clients.index.my_apps' %>

<% if @client_applications.empty? %> -

<%= t('oauth_clients.index.no_apps', :oauth => "OAuth") %>

+

<%= raw(t('oauth_clients.index.no_apps', :oauth => "OAuth")) %>

<% else %>

<%= t'oauth_clients.index.registered_apps' %>

<% @client_applications.each do |client|%> diff --git a/app/views/site/_search.html.erb b/app/views/site/_search.html.erb index b1e5f4487..2c914d14c 100644 --- a/app/views/site/_search.html.erb +++ b/app/views/site/_search.html.erb @@ -82,7 +82,7 @@

- <%= t 'site.search.search_help' %> + <%= raw(t 'site.search.search_help') %>

<% end %> diff --git a/app/views/site/copyright.html.erb b/app/views/site/copyright.html.erb index b5f0db418..92c84c745 100644 --- a/app/views/site/copyright.html.erb +++ b/app/views/site/copyright.html.erb @@ -41,5 +41,5 @@
<% end %> - <%= t('license_page.legal_babble') %> + <%= raw(t('license_page.legal_babble')) %> <% end %> diff --git a/app/views/trace/_trace.html.erb b/app/views/trace/_trace.html.erb index 31e4cf0b1..32717d824 100644 --- a/app/views/trace/_trace.html.erb +++ b/app/views/trace/_trace.html.erb @@ -25,7 +25,7 @@ <%= t'trace.trace.by' %> <%=link_to h(trace.user.display_name), {:controller => 'user', :action => 'view', :display_name => trace.user.display_name} %> <% if !trace.tags.empty? %> <%= t'trace.trace.in' %> - <%= trace.tags.collect { |tag| link_to_tag tag.tag }.join(", ") %> + <%= raw(trace.tags.collect { |tag| link_to_tag tag.tag }.join(", ")) %> <% end %> diff --git a/app/views/trace/view.html.erb b/app/views/trace/view.html.erb index 0d9b6213f..1f272b271 100644 --- a/app/views/trace/view.html.erb +++ b/app/views/trace/view.html.erb @@ -38,7 +38,7 @@ <%= t'trace.view.tags' %> <% unless @trace.tags.empty? %> - <%= @trace.tags.collect { |tag| link_to tag.tag, { :controller => 'trace', :action => 'list', :tag => tag.tag, :id => nil } }.join(", ") %> + <%= raw(@trace.tags.collect { |tag| link_to tag.tag, { :controller => 'trace', :action => 'list', :tag => tag.tag, :id => nil } }.join(", ")) %> <% else %> <%= t'trace.view.none' %> <% end %> diff --git a/app/views/user/new.html.erb b/app/views/user/new.html.erb index a988afd80..9fcbfdcba 100644 --- a/app/views/user/new.html.erb +++ b/app/views/user/new.html.erb @@ -26,7 +26,7 @@ - <%= t 'user.new.not displayed publicly' %> + <%= raw(t 'user.new.not displayed publicly') %>   diff --git a/app/views/user/view.html.erb b/app/views/user/view.html.erb index 834e8571b..4cb2b9e5a 100644 --- a/app/views/user/view.html.erb +++ b/app/views/user/view.html.erb @@ -92,7 +92,7 @@ <% if @user and @this_user.id == @user.id %>
<% if @this_user.home_lat.nil? or @this_user.home_lon.nil? %> -

<%= t 'user.view.if set location', :settings_link => (link_to t('user.view.settings_link_text'), :controller => 'user', :action => 'account', :display_name => @user.display_name) %>

+

<%= raw(t 'user.view.if set location', :settings_link => (link_to t('user.view.settings_link_text'), :controller => 'user', :action => 'account', :display_name => @user.display_name)) %>

<% else %> <%= render :partial => 'map', :locals => { :setting_location => false, :show_other_users => true } %> <% end %> diff --git a/app/views/user_blocks/blocks_by.html.erb b/app/views/user_blocks/blocks_by.html.erb index c9158536b..dc523cee9 100644 --- a/app/views/user_blocks/blocks_by.html.erb +++ b/app/views/user_blocks/blocks_by.html.erb @@ -1,5 +1,5 @@ <% @title = t('user_block.blocks_by.title', :name => h(@this_user.display_name)) %> -

<%= t('user_block.blocks_by.heading', :name => link_to(h(@this_user.display_name), {:controller => 'user', :action => 'view', :display_name => @this_user.display_name})) %>

+

<%= raw(t('user_block.blocks_by.heading', :name => link_to(h(@this_user.display_name), {:controller => 'user', :action => 'view', :display_name => @this_user.display_name}))) %>

<% unless @user_blocks.empty? %> <%= render :partial => 'blocks', :locals => { :show_revoke_link => (@user and @user.moderator?), :show_user_name => true, :show_creator_name => false } %> diff --git a/app/views/user_blocks/blocks_on.html.erb b/app/views/user_blocks/blocks_on.html.erb index 2074af433..86ae110df 100644 --- a/app/views/user_blocks/blocks_on.html.erb +++ b/app/views/user_blocks/blocks_on.html.erb @@ -1,5 +1,5 @@ <% @title = t('user_block.blocks_on.title', :name => h(@this_user.display_name)) %> -

<%= t('user_block.blocks_on.heading', :name => link_to(h(@this_user.display_name), {:controller => 'user', :action => 'view', :display_name => @this_user.display_name})) %>

+

<%= raw(t('user_block.blocks_on.heading', :name => link_to(h(@this_user.display_name), {:controller => 'user', :action => 'view', :display_name => @this_user.display_name}))) %>

<% unless @user_blocks.empty? %> <%= render :partial => 'blocks', :locals => { :show_revoke_link => (@user and @user.moderator?), :show_user_name => false, :show_creator_name => true } %>