Sanitize user input

author Lukas Reschke <lukas@statuscode.ch>

Sun, 10 Jun 2012 22:23:35 +0000 (00:23 +0200)

committer Lukas Reschke <lukas@statuscode.ch>

Mon, 11 Jun 2012 09:54:45 +0000 (11:54 +0200)
author Lukas Reschke <lukas@statuscode.ch>
Sun, 10 Jun 2012 22:23:35 +0000 (00:23 +0200)
committer Lukas Reschke <lukas@statuscode.ch>
Mon, 11 Jun 2012 09:54:45 +0000 (11:54 +0200)
diff --git a/apps/user_openid/settings.php b/apps/user_openid/settings.php

index 921fa371dde88b4b71cfbb4eccbf6bf588d4e366..062322f6fe49c0a95ecbd0c1bd5dc044fa78f758 100644 (file)
--- a/apps/user_openid/settings.php
+++ b/apps/user_openid/settings.php
@@ -2,7 +2,7 @@
  
  $tmpl = new OCP\Template( 'user_openid', 'settings');
  $identity=OCP\Config::getUserValue(OCP\USER::getUser(),'user_openid','identity','');
-$tmpl->assign('identity',$identity);
+$tmpl->assign('identity',htmlentities($identity));
  
  OCP\Util::addscript('user_openid','settings');
author	Lukas Reschke <lukas@statuscode.ch>
	Sun, 10 Jun 2012 22:23:35 +0000 (00:23 +0200)
committer	Lukas Reschke <lukas@statuscode.ch>
	Mon, 11 Jun 2012 09:54:45 +0000 (11:54 +0200)