#10912: Autoescaping variable input in template tags
--------------------------------------+-------------------------------------
Reporter: andrewbadr | Owner: andrewbadr
Status: new | Milestone: 1.1
Component: Template system | Version: 1.0
Resolution: | Keywords:
Stage: Accepted | Has_patch: 1
Needs_docs: 0 | Needs_tests: 0
Needs_better_patch: 1 |
--------------------------------------+-------------------------------------
Changes (by krystal):
* milestone: => 1.1
Comment:
I move this to milestone 1.1 so the big-boss-team give his opinion ;
default django security is involved and the doc clearly say that "firstof"
is equivalent to {%if bla %}{{varx}} for now, it's very missleading.
I can wrote a patch for the documentation if needed, just tell me if I
have to open a new ticket.
--
Ticket URL: <http://code.djangoproject.com/ticket/10912#comment:4>
Django <http://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To post to this group, send email to django-updates@googlegroups.com
To unsubscribe from this group, send email to
django-updates+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/django-updates?hl=en
-~----------~----~----~----~------~----~------~--~---
