fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-01-14 00:39:57 +09:00
Code Issues Projects Releases Packages Wiki Activity

피드에서, 문서의 제목에 속성을 넣을 경우, HTML태그가 삽입되는 오류 수정(속성 않넣는 getTitleText 로 바꿈) // 사용자의 홈페이지,블로그 주소가 http://로 시작하지 않을 수 있으므로, [a-z]+ 로 대체

Browse source 
git-svn-id: http://xe-core.googlecode.com/svn/sandbox@5925 201d5d3c-b55e-5fd7-737f-ddc643e51545
This commit is contained in:
misol 2009-03-22 13:21:54 +00:00
parent f0208bb187
commit 781305f6e4
7 changed files with 12 additions and 12 deletions
Download patch file Download diff file Expand all files Collapse all files

4
modules/comment/comment.controller.php
View file

@ -104,7 +104,7 @@
if($oDocument->isLocked()) return new Object(-1,'msg_invalid_request');
if($obj->password) $obj->password = md5($obj->password);
if($obj->homepage && !preg_match('/^http:\/\//i',$obj->homepage)) $obj->homepage = 'http://'.$obj->homepage;
if($obj->homepage && !preg_match('/^[a-z]+:\/\//i',$obj->homepage)) $obj->homepage = 'http://'.$obj->homepage;
// 로그인 된 회원일 경우 회원의 정보를 입력
if(Context::get('is_logged')) {
@ -269,7 +269,7 @@
if(!$is_admin && !$source_obj->isGranted()) return new Object(-1, 'msg_not_permitted');
if($obj->password) $obj->password = md5($obj->password);
if($obj->homepage && !preg_match('/^http:\/\//i',$obj->homepage)) $obj->homepage = 'http://'.$obj->homepage;
if($obj->homepage && !preg_match('/^[a-z]+:\/\//i',$obj->homepage)) $obj->homepage = 'http://'.$obj->homepage;
// 로그인 되어 있고 작성자와 수정자가 동일하면 수정자의 정보를 세팅
if(Context::get('is_logged')) {

4
modules/document/document.controller.php
View file

@ -132,7 +132,7 @@
if($obj->allow_comment!='Y') $obj->allow_comment = 'N';
if($obj->lock_comment!='Y') $obj->lock_comment = 'N';
if($obj->allow_trackback!='Y') $obj->allow_trackback = 'N';
if($obj->homepage && !preg_match('/^http:\/\//i',$obj->homepage)) $obj->homepage = 'http://'.$obj->homepage;
if($obj->homepage && !preg_match('/^[a-z]+:\/\//i',$obj->homepage)) $obj->homepage = 'http://'.$obj->homepage;
if($obj->notify_message != 'Y') $obj->notify_message = 'N';
// $extra_vars를 serialize
@ -273,7 +273,7 @@
if($obj->allow_comment!='Y') $obj->allow_comment = 'N';
if($obj->lock_comment!='Y') $obj->lock_comment = 'N';
if($obj->allow_trackback!='Y') $obj->allow_trackback = 'N';
if($obj->homepage && !preg_match('/^http:\/\//i',$obj->homepage)) $obj->homepage = 'http://'.$obj->homepage;
if($obj->homepage && !preg_match('/^[a-z]+:\/\//i',$obj->homepage)) $obj->homepage = 'http://'.$obj->homepage;
if($obj->notify_message != 'Y') $obj->notify_message = 'N';
// $extra_vars를 serialize

8
modules/member/member.controller.php
View file

@ -1408,8 +1408,8 @@
list($args->email_id, $args->email_host) = explode('@', $args->email_address);
// 홈페이지, 블로그의 주소 검사
if($args->homepage && !preg_match("/^http:\/\//i",$args->homepage)) $args->homepage = 'http://'.$args->homepage;
if($args->blog && !preg_match("/^http:\/\//i",$args->blog)) $args->blog = 'http://'.$args->blog;
if($args->homepage && !preg_match("/^[a-z]+:\/\//i",$args->homepage)) $args->homepage = 'http://'.$args->homepage;
if($args->blog && !preg_match("/^[a-z]+:\/\//i",$args->blog)) $args->blog = 'http://'.$args->blog;
// 모델 객체 생성
$oMemberModel = &getModel('member');
@ -1556,8 +1556,8 @@
list($args->email_id, $args->email_host) = explode('@', $args->email_address);
// 홈페이지, 블로그의 주소 검사
if($args->homepage && !preg_match("/^http:\/\//is",$args->homepage)) $args->homepage = 'http://'.$args->homepage;
if($args->blog && !preg_match("/^http:\/\//is",$args->blog)) $args->blog = 'http://'.$args->blog;
if($args->homepage && !preg_match("/^[a-z]+:\/\//is",$args->homepage)) $args->homepage = 'http://'.$args->homepage;
if($args->blog && !preg_match("/^[a-z]+:\/\//is",$args->blog)) $args->blog = 'http://'.$args->blog;
// 아이디, 닉네임, email address 의 중복 체크
$member_srl = $oMemberModel->getMemberSrlByUserID($args->user_id);

2
modules/rss/tpl/atom10.html
View file

@ -11,7 +11,7 @@
<link rel="self" type="application/atom+xml" href="{$info->id}"/>
<generator uri="http://www.xpressengine.com/" version="{__ZBXE_VERSION__}">XpressEngine</generator>
<!--@foreach($document_list as $oDocument)--> <entry>
<title>{str_replace('\'', '&apos;',$oDocument->getTitle())}</title>
<title>{str_replace('\'', '&apos;',htmlspecialchars($oDocument->getTitleText()))}</title>
<id>{$oDocument->getPermanentUrl()}</id>
<published>{$oDocument->getRegdate('Y-m-d\TH:i:sP')}</published>
<updated>{zdate($oDocument->get('last_update'),'Y-m-d\TH:i:sP')}</updated>

2
modules/rss/tpl/rss10.html
View file

@ -17,7 +17,7 @@
</channel>
<!--@foreach($document_list as $oDocument)-->
<item rdf:about="{$oDocument->getPermanentUrl()}">
<title>{str_replace('\'', '&apos;',$oDocument->getTitle())}</title>
<title>{str_replace('\'', '&apos;',htmlspecialchars($oDocument->getTitleText()))}</title>
<link>{$oDocument->getPermanentUrl()}</link>
<description>{str_replace('\'', '&apos;', htmlspecialchars($oDocument->getContentText(200)))}</description>
<dc:date>{$oDocument->getRegdate('Y-m-d\TH:i:sP')}</dc:date>

2
modules/rss/tpl/rss20.html
View file

@ -21,7 +21,7 @@
<!--@end-->
<!--@foreach($document_list as $oDocument)-->
<item>
<title>{str_replace('\'', '&apos;',$oDocument->getTitle())}</title>
<title>{str_replace('\'', '&apos;',htmlspecialchars($oDocument->getTitleText()))}</title>
<dc:creator>{str_replace('\'', '&apos;',$oDocument->getNickName())}</dc:creator>
<link>{$oDocument->getPermanentUrl()}</link>
<guid isPermaLink="true">{$oDocument->getPermanentUrl()}</guid>

2
modules/rss/tpl/xe_rss.html
View file

@ -11,7 +11,7 @@
<totalPage>{$info->total_page}</totalPage>
<!--@foreach($document_list as $oDocument)-->
<item>
<title>{str_replace('\'', '&apos;',$oDocument->getTitle())}</title>
<title>{str_replace('\'', '&apos;',htmlspecialchars($oDocument->getTitleText()))}</title>
<author>{str_replace('\'', '&apos;',$oDocument->getNickName())}</author>
<link>{$oDocument->getPermanentUrl()}</link>
<!--@if($open_rss_config[$oDocument->get('module_srl')]->open_rss=='Y')-->