Hi Josh,
On Wed, Nov 14, Josh wrote:
>
> Fixed it.
>
> New feature in django-dev is HTML escaping for any template tags (good
> against cross-site scripting problems).
>
> Had to apply the safe filter to any template tags I don't want auto-
> escaped.
>
> OLD: {{ block.super|safe }}
>
> NEW: {{ block.super|safe }}
This should only be needed if you did not do what Malcolm called "Simple
backwards compatibility", i.e. to set {% autoescape off %}.
So, am I right that you didn't put such a {% autoescape off %} tag in your
root template? Then you have to examine whether you use any html fragments
in your template variables.
Michael
--
noris network AG - Deutschherrnstraße 15-19 - D-90429 Nürnberg -
Tel +49-911-9352-0 - Fax +49-911-9352-100
http://www.noris.de - The IT-Outsourcing Company
Vorstand: Ingo Kraupa (Vorsitzender), Joachim Astel, Hansjochen Klenk -
Vorsitzender des Aufsichtsrats: Stefan Schnabel - AG Nürnberg HRB 17689
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Django users" group.
To post to this group, send email to django-users@googlegroups.com
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.com/group/django-users?hl=en
-~----------~----~----~----~------~----~------~--~---
