codeninjasllc/discourse
1
0
Fork 0
mirror of https://github.com/codeninjasllc/discourse.git synced 2024-11-24 08:09:13 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

FIX: strip html tags from category badge tooltips

Browse source
This commit is contained in:
Neil Lalonde 2014-06-19 17:19:13 -04:00
parent cefdb98b79
commit eeeb834b6b
1 changed files with 3 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
app/assets/javascripts/discourse/lib/html.js
View file

@ -95,8 +95,9 @@ Discourse.HTML = {
(opts.clearChildColor ? ' clear-badge' : '') +
extraClasses + "\" ";
name = Handlebars.Utils.escapeExpression(name);
// Add description if we have it
if (description) html += "title=\"" + Handlebars.Utils.escapeExpression(description) + "\" ";
// Add description if we have it, without tags. Server has sanitized the description value.
if (description) html += "title=\"" + $("<div/>").html(description).text() + "\" ";
if (!opts.clearChildColor) {
var categoryStyle = Discourse.HTML.categoryStyle(category);