Turn autoescape on by default & turn it off in every template

We will remove it in each template once we've added |escape or |safe to every variable. Signed-off-by: Richard Mansfield <richardm@catalyst.net.nz>

Turn autoescape on by default & turn it off in every template
We will remove it in each template once we've added |escape or |safe to every variable. Signed-off-by: Richard Mansfield <richardm@catalyst.net.nz>
2c9d2095 · Richard Mansfield · 9203cad6 · 2c9d2095 · 2c9d2095 · 2c9d2095
Commit 2c9d2095 authored May 04, 2010 by Richard Mansfield
20 changed files
--- a/htdocs/artefact/blog/blocktype/blog/theme/raw/blog_render_self.tpl
+++ b/htdocs/artefact/blog/blocktype/blog/theme/raw/blog_render_self.tpl
+{auto_escape off}
 {if !$options.hidetitle}<h2>{$artefacttitle}</h2>{/if}

 {$description}
@@ -13,3 +14,4 @@
 {if $newerpostslink}<div><a href="{$newerpostslink|escape}">{str tag=newerposts section=artefact.blog}</a></div>{/if}
 </div>
 {/if}
+{/auto_escape}
--- a/htdocs/artefact/blog/blocktype/recentposts/theme/raw/recentposts.tpl
+++ b/htdocs/artefact/blog/blocktype/recentposts/theme/raw/recentposts.tpl
+{auto_escape off}
 <ul>
 {foreach from=$mostrecent item=post}
    <li>
@@ -9,3 +10,4 @@
    </li>
 {/foreach}
 </ul>
+{/auto_escape}
--- a/htdocs/artefact/blog/export/html/theme/raw/index.tpl
+++ b/htdocs/artefact/blog/export/html/theme/raw/index.tpl
+{auto_escape off}
 {include file="export:html:header.tpl"}

 {$rendered_blog}

 {include file="export:html:footer.tpl"}
+{/auto_escape}
--- a/htdocs/artefact/blog/export/html/theme/raw/summary.tpl
+++ b/htdocs/artefact/blog/export/html/theme/raw/summary.tpl
+{auto_escape off}
 <p>{$stryouhaveblogs}</p>
 {if $blogs}
 <ul>
@@ -6,3 +7,4 @@
 {/foreach}
 </ul>
 {/if}
+{/auto_escape}
--- a/htdocs/artefact/blog/theme/raw/artefactchooser-element.tpl
+++ b/htdocs/artefact/blog/theme/raw/artefactchooser-element.tpl
+{auto_escape off}
    <tr>
        <td style="width: 20px;" rowspan="2">
            {$formcontrols}
@@ -7,3 +8,4 @@
    <tr>
        <td>{if $artefact->description}{$artefact->description}{/if}</td>
    </tr>
+{/auto_escape}
--- a/htdocs/artefact/blog/theme/raw/atom.xml.tpl
+++ b/htdocs/artefact/blog/theme/raw/atom.xml.tpl
+{auto_escape off}
 <?xml version="1.0"?>
 <feed xmlns="http://www.w3.org/2005/Atom">
    <title>{$feed.title}</title>
@@ -35,3 +36,4 @@
    </entry>
 {/foreach}
 </feed>
+{/auto_escape}
--- a/htdocs/artefact/blog/theme/raw/bloglist.tpl
+++ b/htdocs/artefact/blog/theme/raw/bloglist.tpl
+{auto_escape off}
 <script type="text/javascript">
    function confirmdelete(id) {
        if(confirm("{str tag=deleteblog? section=artefact.blog}")) {
@@ -18,3 +19,4 @@
      </td>
    </tr>
  {/foreach}
+{/auto_escape}
--- a/htdocs/artefact/blog/theme/raw/editpost.tpl
+++ b/htdocs/artefact/blog/theme/raw/editpost.tpl
+{auto_escape off}
 {include file="header.tpl"}
        {$form}
 {include file="footer.tpl"}
+{/auto_escape}
--- a/htdocs/artefact/blog/theme/raw/image_popup.tpl
+++ b/htdocs/artefact/blog/theme/raw/image_popup.tpl
+{auto_escape off}
 <html xmlns="http://www.w3.org/1999/xhtml">
 <head>
 	<title>{str tag=insertimage section=artefact.blog}</title>
@@ -77,3 +78,4 @@
 </form>
 </body>
 </html>
+{/auto_escape}
--- a/htdocs/artefact/blog/theme/raw/index.tpl
+++ b/htdocs/artefact/blog/theme/raw/index.tpl
+{auto_escape off}
 {include file="header.tpl"}
            <div class="rbuttons">
                <a class="btn btn-add" href="{$WWWROOT}artefact/blog/new/">{str section="artefact.blog" tag="addblog"}</a>
@@ -18,3 +19,4 @@
 {/if}
                </div>
 {include file="footer.tpl"}
+{/auto_escape}
--- a/htdocs/artefact/blog/theme/raw/new.tpl
+++ b/htdocs/artefact/blog/theme/raw/new.tpl
+{auto_escape off}
 {include file="header.tpl"}
    		{$newblogform}
 {include file="footer.tpl"}
+{/auto_escape}
--- a/htdocs/artefact/blog/theme/raw/render/blog_rendermetadata.tpl
+++ b/htdocs/artefact/blog/theme/raw/render/blog_rendermetadata.tpl
+{auto_escape off}
 <table>
    <tbody>
    {foreach from=$PROPERTIES item=item}
@@ -8,3 +9,4 @@
    {/foreach}
    </tbody>
 </table>
+{/auto_escape}
--- a/htdocs/artefact/blog/theme/raw/render/blogpost_renderfull.tpl
+++ b/htdocs/artefact/blog/theme/raw/render/blogpost_renderfull.tpl
+{auto_escape off}
 {**
 * This template displays a blog post.
 *}
@@ -21,3 +22,4 @@
  {/if}
  <div class="postdetails">{$postedbyon|escape}</div>
 </div>
+{/auto_escape}
--- a/htdocs/artefact/blog/theme/raw/settings.tpl
+++ b/htdocs/artefact/blog/theme/raw/settings.tpl
+{auto_escape off}
 {include file="header.tpl"}
            {$editform}
 {include file="footer.tpl"}
+{/auto_escape}
--- a/htdocs/artefact/blog/theme/raw/view.tpl
+++ b/htdocs/artefact/blog/theme/raw/view.tpl
+{auto_escape off}
 {include file="header.tpl"}
 			<div id="myblogs rel">

@@ -21,3 +22,4 @@
 					
            </div>
 {include file="footer.tpl"}
+{/auto_escape}
--- a/htdocs/artefact/comment/theme/raw/commentlist.tpl
+++ b/htdocs/artefact/comment/theme/raw/commentlist.tpl
+{auto_escape off}
  {foreach from=$data item=item}
    <tr class="{cycle name=rows values='r0,r1'}{if $item->highlight} highlight{/if}">
      <td>
@@ -37,3 +38,4 @@
      </td>
    </tr>
  {/foreach}
+{/auto_escape}
--- a/htdocs/artefact/comment/theme/raw/edit.tpl
+++ b/htdocs/artefact/comment/theme/raw/edit.tpl
+{auto_escape off}
 {include file="header.tpl"}
 <p>{$strdescription}</p>
 {$form}
 {include file="footer.tpl"}
+{/auto_escape}
--- a/htdocs/artefact/file/export/html/theme/raw/index.tpl
+++ b/htdocs/artefact/file/export/html/theme/raw/index.tpl
+{auto_escape off}
 {include file="export:html:header.tpl"}

 <h2>{str tag=Folder section=artefact.file}: {$folder|escape}</h2>
@@ -49,3 +50,4 @@
 {/if}

 {include file="export:html:footer.tpl"}
+{/auto_escape}
--- a/htdocs/artefact/file/export/html/theme/raw/summary.tpl
+++ b/htdocs/artefact/file/export/html/theme/raw/summary.tpl
+{auto_escape off}
 <p><a href="{$rootpath}files/file/index.html">Browse your file collection</a></p>
 <ul>
    <li>{str tag=Files section=artefact.file}: {$filecount|escape}</li>
    <li>{str tag=Folders section=artefact.file}: {$foldercount|escape}</li>
    <li>{str tag=spaceused section=artefact.file}: {$spaceused|display_size|escape}</li>
 </ul>
+{/auto_escape}
--- a/htdocs/artefact/file/theme/raw/artefactchooser-element.tpl
+++ b/htdocs/artefact/file/theme/raw/artefactchooser-element.tpl
+{auto_escape off}
    <tr title="{$artefact->hovertitle|escape}">
        <td style="width: 20px;">
            {$formcontrols}
@@ -5,3 +6,4 @@
        <td style="width: 22px;"><label for="{$elementname}_{$artefact->id}"><img src="{$artefact->icon|escape}" alt="*"></label></td>
        <th><label for="{$elementname}_{$artefact->id}">{if $artefact->description}{$artefact->description|escape}{else}{$artefact->title|escape}{/if}{if $artefact->artefacttype == 'profileicon'} ({str tag=profileicon section=artefact.file}){/if}</label></th>
    </tr>
+{/auto_escape}