diff options
author | lpsolit%gmail.com <> | 2009-02-02 19:59:17 +0100 |
---|---|---|
committer | lpsolit%gmail.com <> | 2009-02-02 19:59:17 +0100 |
commit | d382992164347e076c51d3116a32aeabb2beecd5 (patch) | |
tree | 733546d50af433091cac9db779e8ea275dc4c6ce /template/en/default/admin/flag-type | |
parent | 44341577cd209d8c61fe4129ea72785fc7be9ee5 (diff) | |
download | bugzilla-d382992164347e076c51d3116a32aeabb2beecd5.tar.gz bugzilla-d382992164347e076c51d3116a32aeabb2beecd5.tar.xz |
Bug 466692: [SECURITY] keywords and unused flag types can be deleted by bypassing the token check - Patch by Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=LpSolit
Diffstat (limited to 'template/en/default/admin/flag-type')
-rw-r--r-- | template/en/default/admin/flag-type/confirm-delete.html.tmpl | 13 |
1 files changed, 8 insertions, 5 deletions
diff --git a/template/en/default/admin/flag-type/confirm-delete.html.tmpl b/template/en/default/admin/flag-type/confirm-delete.html.tmpl index cc6a064a9..ed909417d 100644 --- a/template/en/default/admin/flag-type/confirm-delete.html.tmpl +++ b/template/en/default/admin/flag-type/confirm-delete.html.tmpl @@ -28,13 +28,16 @@ %] <p> - There are [% flag_type.flag_count %] flags of type [% flag_type.name FILTER html %]. - If you delete this type, those flags will also be deleted. Note that - instead of deleting the type you can + [% IF flag_type.flag_count %] + There are [% flag_type.flag_count %] flags of type [% flag_type.name FILTER html %]. + If you delete this type, those flags will also be deleted. + [% END %] + + Note that instead of deleting the type you can <a href="editflagtypes.cgi?action=deactivate&id=[% flag_type.id %]&token= [%- token FILTER html %]">deactivate it</a>, - in which case the type and its flags will remain in the database - but will not appear in the [% terms.Bugzilla %] UI. + in which case the type [% IF flag_type.flag_count %] and its flags [% END %] will remain + in the database but will not appear in the [% terms.Bugzilla %] UI. </p> <table> |