diff options
| author |  tobi <31960611+tsmethurst@users.noreply.github.com> | 2022-05-26 11:37:13 +0200 |
|---|---|---|
| committer |  GitHub <noreply@github.com> | 2022-05-26 11:37:13 +0200 |
| commit | 5668ce1ec701ed12eb099020e8a322de08e6f810 (patch) | |
| tree | f056890ae94f464176750be17b06292c5b9160d7 /internal/processing/account/create.go | |
| parent | [security] Set SameSite to `strict` instead of browser default (#606) (diff) | |
| download | gotosocial-5668ce1ec701ed12eb099020e8a322de08e6f810.tar.xz | |
[bugfix] Fix HTML escaping in instance title (#607)
* move caption sanitization -> sanitize.go
* use sanitizeplaintext rather than removehtml
* rename sanitizecaption to sanitizeplaintext
* avoid removing html twice from statuses
* unexport remoteHTML
it's no longer used outside the text package so this
makes it less confusing
* test instance PATCH
Diffstat (limited to 'internal/processing/account/create.go')
| -rw-r--r-- | internal/processing/account/create.go | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/internal/processing/account/create.go b/internal/processing/account/create.go index bbca11fae..61c4f95ef 100644 --- a/internal/processing/account/create.go +++ b/internal/processing/account/create.go @@ -64,7 +64,7 @@ func (p *processor) Create(ctx context.Context, applicationToken oauth2.TokenInf } l.Trace("creating new username and account") - user, err := p.db.NewSignup(ctx, form.Username, text.RemoveHTML(reason), approvalRequired, form.Email, form.Password, form.IP, form.Locale, application.ID, false, false) + user, err := p.db.NewSignup(ctx, form.Username, text.SanitizePlaintext(reason), approvalRequired, form.Email, form.Password, form.IP, form.Locale, application.ID, false, false) if err != nil { return nil, fmt.Errorf("error creating new signup in the database: %s", err) } |