r68890 MediaWiki - Code Review archive

Repository:	MediaWiki
Revision:	< r68889‎ \| r68890 \| r68891 >
Date:	16:41, 2 July 2010
Author:	jeroendedauw
Status:	deferred
Tags:
Comment:	Changes for 0.3.4 - fixed escaping issue
Modified paths:	/trunk/extensions/Validator/Validator.class.php (modified) (history) /trunk/extensions/Validator/Validator.php (modified) (history) /trunk/extensions/Validator/Validator_Manager.php (modified) (history)

Diff [purge]

Index: trunk/extensions/Validator/Validator.class.php
—	—	@@ -208,7 +208,7 @@
209	209	*/
210	210	public function setParameters( array $parameters, array $parameterInfo, $toLower = true ) {
211	211	$this->mParameterInfo = $parameterInfo;
212		-
	212	+
213	213	// Loop through all the user provided parameters, and destinguise between those that are allowed and those that are not.
214	214	foreach ( $parameters as $paramName => $paramData ) {
215	215	$paramName = trim( strtolower( $paramName ) );
Index: trunk/extensions/Validator/Validator_Manager.php
—	—	@@ -97,7 +97,7 @@
98	98	$errorList = '<b>' . wfMsgExt( 'validator_error_parameters', 'parsemag', count( $rawErrors ) ) . '</b><br /><i>';
99	99
100	100	$errors = array();
101		-
	101	+
102	102	foreach ( $rawErrors as $error ) {
103	103	$error['name'] = '<b>' . Sanitizer::escapeId( $error['name'] ) . '</b>';
104	104
—	—	@@ -158,7 +158,7 @@
159	159	$errors[] = wfMsgExt( 'validator_error_accepts_only', array( 'parsemag' ), $error['name'], $itemsText, count( $error['args'] ) );
160	160	break;
161	161	case 'invalid' : default :
162		~~- $errors[] = wfMsgExt( 'validator_error_invalid_argument', array( 'parsemag' ), '<b>' . Sanitizer::escapeId( $error['value'] ) . '</b>', $error['name'] );~~
	162	+ $errors[] = wfMsgExt( 'validator_error_invalid_argument', array( 'parsemag' ), '<b>' . htmlspecialchars( $error['value'] ) . '</b>', $error['name'] );
163	163	break;
164	164	}
165	165	}
Index: trunk/extensions/Validator/Validator.php
—	—	@@ -24,7 +24,7 @@
25	25	die( 'Not an entry point.' );
26	26	}
27	27
28		~~-define( 'Validator_VERSION', '0.3.4 a3' );~~
	28	+define( 'Validator_VERSION', '0.3.4 a5' );
29	29
30	30	// Constants indicating the strictness of the parameter validation.
31	31	define( 'Validator_ERRORS_NONE', 0 );

Status & tagging log

17:24, 2 July 2010 Reedy (talk | contribs) changed the status of r68890 [removed: new added: deferred]