Closed GoogleCodeExporter closed 9 years ago
Sorry, this fix affects admin interface ('edit' and 'delete' links become
escaped too) :(
Original comment by mihail.l...@gmail.com
on 25 Sep 2009 at 9:16
Yes, the escaping must be done in field rendering
If the problem occur with one of fa's renderer then fill a new issue with this.
else,
fix your own :)
Original comment by gael.pas...@gmail.com
on 25 Sep 2009 at 10:01
OK, this is not an issue, let it be feature :)
Then, i need an advice:
- if I render with ${field.render_readonly()|n} I get HTML injection in table
data cells;
- with ${field.render_readonly()} I can't get 'edit|delete|view' links in
additional
cells. should I set any attribute to 'field' to tell FA that value is safe?
(I'm glad
to migrate from Django to Pylons; although, in Django I could set 'is_safe'
attribute
to any str variable to avoid escaping).
Any advice is greatly appreciated!
Original comment by mihail.l...@gmail.com
on 27 Sep 2009 at 4:13
Original issue reported on code.google.com by
mihail.l...@gmail.com
on 25 Sep 2009 at 9:10Attachments: