diff options
| author | francis <francis> | 2008-07-10 08:24:30 +0000 |
|---|---|---|
| committer | francis <francis> | 2008-07-10 08:24:30 +0000 |
| commit | 6ba29bab45b311c60aa650275c333638313dac7d (patch) | |
| tree | 02d04f6a681bb1ef06ae9eafe42bb1093bd7f887 | |
| parent | ced5480dfedd529a0c78d080ef7e1611c76b53df (diff) | |
Whoops. Must make a framework that makes such mistakes impossible.
| -rw-r--r-- | app/models/outgoing_message.rb | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/app/models/outgoing_message.rb b/app/models/outgoing_message.rb index ca1562738..482c5c0fe 100644 --- a/app/models/outgoing_message.rb +++ b/app/models/outgoing_message.rb @@ -21,7 +21,7 @@ # Copyright (c) 2007 UK Citizens Online Democracy. All rights reserved. # Email: francis@mysociety.org; WWW: http://www.mysociety.org/ # -# $Id: outgoing_message.rb,v 1.52 2008-06-06 11:39:07 francis Exp $ +# $Id: outgoing_message.rb,v 1.53 2008-07-10 08:24:30 francis Exp $ class OutgoingMessage < ActiveRecord::Base belongs_to :info_request @@ -149,6 +149,7 @@ class OutgoingMessage < ActiveRecord::Base # Return body for display as HTML def get_body_for_html_display text = self.body.strip + text = CGI.escapeHTML(text) text = MySociety::Format.make_clickable(text, :contract => 1) text = text.gsub(/\n/, '<br>') return text @@ -159,6 +160,7 @@ class OutgoingMessage < ActiveRecord::Base # views/layouts/request_mailer.rhtml and views/request_mailer/initial_request.rhtml def get_body_for_html_preview text = MySociety::Format.wrap_email_body(self.body.strip) + text = CGI.escapeHTML(text) text = MySociety::Format.make_clickable(text, :contract => 1) text = text.gsub(/\n/, '<br>') |