commit d73c72ba58fdbe062297a790f69cc44f3353316a
parent 4104d88a6b24ceae1e603e0438377b59565685a6
Author: Felicitus <felicitus@felicitus.org>
Date: Mon, 2 Jul 2012 23:03:00 +0200
Use entered values as they are, and avoid interpreting them as HTML.
Diffstat:
2 files changed, 10 insertions(+), 4 deletions(-)
diff --git a/src/frontend/js/Components/Part/PartsGrid.js b/src/frontend/js/Components/Part/PartsGrid.js
@@ -178,13 +178,16 @@ Ext.define('PartKeepr.PartsGrid', {
header: i18n("Description"),
dataIndex: 'description',
flex: 2,
- minWidth: 150
+ minWidth: 150,
+ renderer: Ext.util.Format.htmlEncode
},{
header: i18n("Storage Location"),
- dataIndex: 'storageLocationName'
+ dataIndex: 'storageLocationName',
+ renderer: Ext.util.Format.htmlEncode
},{
header: i18n("Status"),
- dataIndex: "status"
+ dataIndex: "status",
+ renderer: Ext.util.Format.htmlEncode
},{
header: i18n("Stock"),
dataIndex: 'stockLevel',
@@ -204,10 +207,12 @@ Ext.define('PartKeepr.PartsGrid', {
renderer: this.averagePriceRenderer
},{
header: i18n("Footprint"),
- dataIndex: 'footprintName'
+ dataIndex: 'footprintName',
+ renderer: Ext.util.Format.htmlEncode
},{
header: i18n("Category"),
dataIndex: 'categoryPath',
+ renderer: Ext.util.Format.htmlEncode,
hidden: true
},{
header: i18n("Create Date"),
diff --git a/src/frontend/js/Components/StockReport/AbstractStockHistoryGrid.js b/src/frontend/js/Components/StockReport/AbstractStockHistoryGrid.js
@@ -58,6 +58,7 @@ Ext.define('PartKeepr.AbstractStockHistoryGrid', {
},{
header: i18n("Comment"),
dataIndex: 'comment',
+ renderer: Ext.util.Format.htmlEncode,
width: 60,
editor: {
xtype:'textfield',
