From 9fabf08d04c3085278591144b3fbcf61d4800e98 Mon Sep 17 00:00:00 2001
From: Robert Lyon <robertl@catalyst.net.nz>
Date: Fri, 22 Nov 2013 09:04:48 +1300
Subject: [PATCH] Allowing form error string to be unescaped (bug #1203082)

As the string is hardcoded in lang file and does NOT take any variables
it is ok to pass into form error as unescaped.

Change-Id: Ibc0b9d7ed872abb7c4ba77d3d2bb5abcde110abc
Signed-off-by: Robert Lyon <robertl@catalyst.net.nz>
---
 htdocs/auth/lib.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/htdocs/auth/lib.php b/htdocs/auth/lib.php
index e8adf17b28..4833ef7bff 100644
--- a/htdocs/auth/lib.php
+++ b/htdocs/auth/lib.php
@@ -1836,7 +1836,7 @@ function password_validate(Pieform $form, $values, $user) {
     $authobj = AuthFactory::create($user->authinstance);
 
     if (!$form->get_error('password1') && !$authobj->is_password_valid($values['password1'])) {
-        $form->set_error('password1', get_string('passwordinvalidform', "auth.$authobj->type"));
+        $form->set_error('password1', get_string('passwordinvalidform', "auth.$authobj->type"), false);
     }
 
     $suckypasswords = array(
-- 
GitLab