DGNum/demarches-normaliennes
15
1
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity

InfoDossier: avoid xss injection

Browse source
This commit is contained in:
Simon Lehericey 2017-07-12 13:47:49 +02:00
parent 7c3b9ecfa9
commit 2e03f77e4d
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
app/views/dossiers/_infos_dossier.html.haml
View file

@ -52,7 +52,7 @@
- elsif champ.decorate.value == 'false' - elsif champ.decorate.value == 'false'
Non Non
- else - else
= champ.decorate.value.html_safe = sanitize(champ.decorate.value)
- if @facade.dossier.mandataire_social && gestionnaire_signed_in? - if @facade.dossier.mandataire_social && gestionnaire_signed_in?
.mandataire_social.text-success.center .mandataire_social.text-success.center