niccofyren
commented
4 years ago Updated to allow a few more special characters. Had to do some extra decoding before querying crew name lookup, hopefully not a security issue since query method itself should escape for sql-query later. Also added some urlencoding to crewpage wiki lookup (it looks up via generating a "fake" url) to keep thing url safe.
Adds crew name validation to Crew model:
Adds workaround to
/Crew/Edit/xxform to be able to display field validation errors. Form uses separate post endpoint per tab, which has no default CakePHP support for passing validation data back to view. So instead we just convert any errors to flash messages to make sure they are displayed (we still loose previous form data along the way).Fixes undefined index error when trying to purge cache data for non-existent crew id.
Fixes: https://github.com/gathering/wannabe/issues/15