Skip to content
Snippets Groups Projects
Commit df1ce235 authored by Naoki Kosaka's avatar Naoki Kosaka Committed by Eugen Rochko
Browse files

Fix non-local statuses are html_encoded in public_page. (#5012)

parent e5c65b30
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 2 additions and 2 deletions
app/lib/formatter.rb
+ 2
2
View file @ df1ce235
...@@ -22,7 +22,7 @@ class Formatter ...@@ -22,7 +22,7 @@ class Formatter
unless status.local? unless status.local?
html = reformat(raw_content) html = reformat(raw_content)
html = encode_custom_emojis(html, status.emojis) if options[:custom_emojify] html = encode_custom_emojis(html, status.emojis) if options[:custom_emojify]
return html return html.html_safe # rubocop:disable Rails/OutputSafety
end end
linkable_accounts = status.mentions.map(&:account) linkable_accounts = status.mentions.map(&:account)
...@@ -39,7 +39,7 @@ class Formatter ...@@ -39,7 +39,7 @@ class Formatter
end end
def reformat(html) def reformat(html)
sanitize(html, Sanitize::Config::MASTODON_STRICT).html_safe # rubocop:disable Rails/OutputSafety sanitize(html, Sanitize::Config::MASTODON_STRICT)
end end
def plaintext(status) def plaintext(status)
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment