diff options
author | Byron Jones <bjones@mozilla.com> | 2011-04-29 07:44:48 +0200 |
---|---|---|
committer | Byron Jones <bjones@mozilla.com> | 2011-04-29 07:44:48 +0200 |
commit | bd1b0779824f599d21304fd99fce5dd919310a2b (patch) | |
tree | 40d0d95262cd108714bad924a33d732af0558c63 | |
parent | 45cc062b9f6eca201c34b8257669d2b6d97da800 (diff) | |
download | bugzilla-bd1b0779824f599d21304fd99fce5dd919310a2b.tar.gz bugzilla-bd1b0779824f599d21304fd99fce5dd919310a2b.tar.xz |
Bug 653406: fix escaping of url vars in error messages
r=LpSolit, a=LpSolit
-rw-r--r-- | template/en/default/global/user-error.html.tmpl | 16 |
1 files changed, 8 insertions, 8 deletions
diff --git a/template/en/default/global/user-error.html.tmpl b/template/en/default/global/user-error.html.tmpl index 071599bf8..cda3d2e5d 100644 --- a/template/en/default/global/user-error.html.tmpl +++ b/template/en/default/global/user-error.html.tmpl @@ -1310,7 +1310,7 @@ Your password is currently less than [%+ constants.USER_PASSWORD_MIN_LENGTH FILTER html %] characters long, which is the new minimum length required for passwords. - You must <a href="token.cgi?a=reqpw&loginname=[% locked_user.email FILTER html %]"> + You must <a href="token.cgi?a=reqpw&loginname=[% locked_user.email FILTER uri %]"> request a new password</a> in order to log in again. [% ELSIF error == "password_too_short" %] @@ -1557,16 +1557,16 @@ [% ELSIF error == "sudo_password_required" %] [% title = "Password Required" %] Your [% terms.Bugzilla %] password is required to begin a sudo - session. Please <a href="relogin.cgi?action=prepare-sudo&target_login= - [%- target_login FILTER html %]&reason= - [%- reason FILTER html %]">go back</a> and enter your password. + session. Please <a href="relogin.cgi?action=prepare-sudo&target_login= + [%- target_login FILTER uri %]&reason= + [%- reason FILTER uri %]">go back</a> and enter your password. [% ELSIF error == "sudo_preparation_required" %] [% title = "Preparation Required" %] You may not start a sudo session directly. Please - <a href="relogin.cgi?action=prepare-sudo&target_login= - [%- target_login FILTER html %]&reason= - [%- reason FILTER html %]">start your session normally</a>. + <a href="relogin.cgi?action=prepare-sudo&target_login= + [%- target_login FILTER uri %]&reason= + [%- reason FILTER uri %]">start your session normally</a>. [% ELSIF error == "sudo_protected" %] [% title = "User Protected" %] @@ -1768,7 +1768,7 @@ [% FOREACH q = Bugzilla.user.queries %] [% IF q.name == namedcmd %] - or <a href="query.cgi?[% q.url FILTER html %]">edit</a> + or <a href="query.cgi?[% q.url FILTER uri %]">edit</a> [% END %] [% END %] |