Le 11/03/2011 01:37, Bernhard Schussek a écrit :
2011/3/11 Christophe COEVOET<[email protected]>:
In your case, I guess that {{ field.errors }} returns some HTML code from
what I see in the slides. How does it work with Twig autoescaping ? A method
call on an abject cannot be marked as safe so it will be {{ form.errors|raw
}} unless you disable the autoescaping when rendering a form but this is
really bad IMHO.
If you use TwigTheme, autoescaping in Twig templates is taken care of
automatically.
Bernhard
What is shown in the slides uses {{ field.errors }} or {{ field.widget
}} which will be escaped as it is a call on a method of the object which
cannot be declared as safe. so what is the way to use the TwigTheme
which is not presented in your slides ? The current extension you want
to remove according to your previous message ?
--
Christophe | Stof
--
If you want to report a vulnerability issue on symfony, please send it to
security at symfony-project.com
You received this message because you are subscribed to the Google
Groups "symfony developers" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to
[email protected]
For more options, visit this group at
http://groups.google.com/group/symfony-devs?hl=en
