[Erp5-report] r33467 nicolas - /erp5/trunk/products/PortalTransforms/transforms/safe_html.py
nobody at svn.erp5.org
nobody at svn.erp5.org
Fri Mar 5 17:30:34 CET 2010
Author: nicolas
Date: Fri Mar 5 17:30:32 2010
New Revision: 33467
URL: http://svn.erp5.org?rev=33467&view=rev
Log:
if attribute value is None do not try to
call regex with.
[...]
<p kind_of_attribute />
[...]
Modified:
erp5/trunk/products/PortalTransforms/transforms/safe_html.py
Modified: erp5/trunk/products/PortalTransforms/transforms/safe_html.py
URL: http://svn.erp5.org/erp5/trunk/products/PortalTransforms/transforms/safe_html.py?rev=33467&r1=33466&r2=33467&view=diff
==============================================================================
--- erp5/trunk/products/PortalTransforms/transforms/safe_html.py [utf8] (original)
+++ erp5/trunk/products/PortalTransforms/transforms/safe_html.py [utf8] Fri Mar 5 17:30:32 2010
@@ -130,6 +130,8 @@
if remove_script and k.strip().lower().startswith('on'):
if not self.raise_error: continue
else: raise IllegalHTML, 'Script event "%s" not allowed.' % k
+ elif v is None:
+ self.result.append(' %s' % (k,))
elif remove_script and hasScript(v):
if not self.raise_error: continue
else: raise IllegalHTML, 'Script URI "%s" not allowed.' % v
More information about the Erp5-report
mailing list