simulacrumparty
/
bnglws-server
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Browse Source

Decode raw snippets to avoid > etc

master
Dylan Baker 5 years ago
parent
75c3a6e1d3
commit
698c97bcc1
1 changed files with 1 additions and 1 deletions
Split View Show Diff Stats
  1. 1
    1
      src/routes.rs

+ 1
- 1
src/routes.rs View File 

@@ -50,7 +50,7 @@ pub fn show_snippet(uuid: String, connection: DbConn) -> Template {
50 50 
 #[get("/snippets/<uuid>/raw")]
51 51 
 pub fn show_raw_snippet(uuid: String, connection: DbConn) -> String {
52 52 
     match snippet::get(&connection, &uuid) {
53 
-        Ok(snippet) => snippet.body,
53 
+        Ok(snippet) => htmlescape::decode_html(&snippet.body).expect("Invalid HTML"),
54 54 
         Err(_) => String::from("Snippet not found"),
55 55 
     }
56 56 
 }

Write Preview
Loading…
Cancel
Save