From: kiko%async.com.br <>
Date: Mon, 12 Apr 2004 04:31:44 +0000 (+0000)
Subject: Fix for bug 238865-v1: remove %FORM from page.cgi. Does so, fixing the
X-Git-Tag: bugzilla-2.18rc1~99
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=fcf2c1a1a5900f51a6e20c6b2391677bf6fb729c;p=thirdparty%2Fbugzilla.git
Fix for bug 238865-v1: remove %FORM from page.cgi. Does so, fixing the
linked page template and adding a code error for the "bad id provided"
case. r=vladd, a=myk.
---
diff --git a/page.cgi b/page.cgi
index b68a9313b4..6e78317fc0 100755
--- a/page.cgi
+++ b/page.cgi
@@ -42,14 +42,19 @@ Bugzilla->login();
my $cgi = Bugzilla->cgi;
-if ($::FORM{'id'}) {
+my $id = $cgi->param('id');
+if ($id) {
# Remove all dodgy chars, and split into name and ctype.
- $::FORM{'id'} =~ s/[^\w\-\.]//g;
- $::FORM{'id'} =~ /(.*)\.(.*)/;
+ $id =~ s/[^\w\-\.]//g;
+ $id =~ /(.*)\.(.*)/;
+ if (!$2) {
+ # if this regexp fails to match completely, something bad came in
+ ThrowCodeError("bad_page_cgi_id", { "page_id" => $id });
+ }
my $format = GetFormat("pages/$1", undef, $2);
- $vars->{'form'} = \%::FORM;
+ $cgi->param('id', $id);
print $cgi->header($format->{'ctype'});
diff --git a/template/en/default/global/code-error.html.tmpl b/template/en/default/global/code-error.html.tmpl
index 342d67102d..c5233b8e88 100644
--- a/template/en/default/global/code-error.html.tmpl
+++ b/template/en/default/global/code-error.html.tmpl
@@ -56,6 +56,11 @@
[% ELSIF error == "authres_unhandled" %]
An authorization handler return value was not handled by the login code.
+ [% ELSIF error == "bad_page_cgi_id" %]
+ [% title = "Invalid Page ID" %]
+ The ID [% page_id FILTER html %]
is not a
+ valid page identifier.
+
[% ELSIF error == "bug_error" %]
Trying to retrieve [% terms.bug %] [%+ bug.bug_id FILTER html %] returned
the error [% bug.error FILTER html %].
diff --git a/template/en/default/pages/linked.html.tmpl b/template/en/default/pages/linked.html.tmpl
index 2a3521a358..fcb5ee9d0d 100644
--- a/template/en/default/pages/linked.html.tmpl
+++ b/template/en/default/pages/linked.html.tmpl
@@ -21,6 +21,8 @@
#%]
[% INCLUDE global/header.html.tmpl title = "Your Linkified Text" %]
+[% USE Bugzilla %]
+[% cgi = Bugzilla.cgi %]
Copy and paste the text below: @@ -30,7 +32,7 @@
-[%- form.text FILTER quoteUrls FILTER html -%] +[%- cgi.param("text") FILTER quoteUrls FILTER html -%]@@ -45,7 +47,7 @@
-[%- form.text FILTER quoteUrls -%] +[%- cgi.param("text") FILTER quoteUrls -%]