wamo/gnu-social
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

special chars for raw links in atlinks

Browse Source 
darcs-hash:20080529173400-84dde-f0883200a6dac50a3d9022cef82816339f9dd84c.gz
This commit is contained in:
Evan Prodromou 2008-05-29 13:34:00 -04:00
parent 85aeafe34a
commit fb3029d74e
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
lib/util.php
View File

@ -365,7 +365,7 @@ function common_at_link($sender_id, $nickname) {
$recipient->whereAdd('EXISTS (SELECT subscribed from subscription where subscriber = '.$sender_id.' and subscribed = id)', 'AND'); $recipient->whereAdd('EXISTS (SELECT subscribed from subscription where subscriber = '.$sender_id.' and subscribed = id)', 'AND');
$recipient->whereAdd('nickname = "' . trim($nickname) . '"', 'AND'); $recipient->whereAdd('nickname = "' . trim($nickname) . '"', 'AND');
if ($recipient->find(TRUE)) { if ($recipient->find(TRUE)) {
return '<a href="'.$recipient->profileurl.'" class="atlink tolistenee">'.$nickname.'</a>'; return '<a href="'.htmlspecialchars($recipient->profileurl).'" class="atlink tolistenee">'.$nickname.'</a>';
} }
# Try to find profiles that listen to this profile and that have this nickname # Try to find profiles that listen to this profile and that have this nickname
$recipient = new Profile(); $recipient = new Profile();
@ -373,7 +373,7 @@ function common_at_link($sender_id, $nickname) {
$recipient->whereAdd('EXISTS (SELECT subscriber from subscription where subscribed = '.$sender_id.' and subscriber = id)', 'AND'); $recipient->whereAdd('EXISTS (SELECT subscriber from subscription where subscribed = '.$sender_id.' and subscriber = id)', 'AND');
$recipient->whereAdd('nickname = "' . trim($nickname) . '"', 'AND'); $recipient->whereAdd('nickname = "' . trim($nickname) . '"', 'AND');
if ($recipient->find(TRUE)) { if ($recipient->find(TRUE)) {
return '<a href="'.$recipient->profileurl.'" class="atlink tolistener">'.$nickname.'</a>'; return '<a href="'.htmlspecialchars($recipient->profileurl).'" class="atlink tolistener">'.$nickname.'</a>';
} }
# If this is a local user, try to find a local user with that nickname. # If this is a local user, try to find a local user with that nickname.
$sender = User::staticGet($sender_id); $sender = User::staticGet($sender_id);
@ -381,7 +381,7 @@ function common_at_link($sender_id, $nickname) {
$recipient_user = User::staticGet('nickname', $nickname); $recipient_user = User::staticGet('nickname', $nickname);
if ($recipient_user) { if ($recipient_user) {
$recipient = $recipient->getProfile(); $recipient = $recipient->getProfile();
return '<a href="'.$recipient->profileurl.'" class="atlink usertouser">'.$nickname.'</a>'; return '<a href="'.htmlspecialchars($recipient->profileurl).'" class="atlink usertouser">'.$nickname.'</a>';
} }
} }
# Otherwise, no links. @messages from local users to remote users, # Otherwise, no links. @messages from local users to remote users,