dinislage/PrestaShop
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

//replace some escape:'html' by addslashes in .tpl with javascript

Browse Source
This commit is contained in:
Vincent Augagneur
2013-06-28 11:06:08 +02:00
parent 32d3dd3e0f
commit dfc7456980
12 changed files with 25 additions and 25 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
admin-dev/themes/default/template/controllers/orders/form.tpl
View File

@@ -100,7 +100,7 @@
$('#show_old_carts').click();
$('#payment_module_name').change();
$.ajaxSetup({ type:"post" });
$("#voucher").autocomplete('{$link->getAdminLink('AdminCartRules')|escape:'html'}', {
$("#voucher").autocomplete('{$link->getAdminLink('AdminCartRules')|addslashes}', {
minChars: 3,
max: 15,
width: 250,
@@ -468,7 +468,7 @@
$('#new_address').attr('href', address_link.replace(/id_customer=[0-9]+/, 'id_customer='+id_customer));
$.ajax({
type:"POST",
url : "{$link->getAdminLink('AdminCarts')|escape:'html'}",
url : "{$link->getAdminLink('AdminCarts')|addslashes}",
async: false,
dataType: "json",
data : {

2
admin-dev/themes/default/template/controllers/orders/helpers/view/view.tpl
View File

@@ -27,7 +27,7 @@
{block name="override_tpl"}
<script type="text/javascript">
var admin_order_tab_link = "{$link->getAdminLink('AdminOrders')|escape:'html'}";
var admin_order_tab_link = "{$link->getAdminLink('AdminOrders')|addslashes}";
var id_order = {$order->id};
var id_lang = {$current_id_lang};
var id_currency = {$order->id_currency};

2
admin-dev/themes/default/template/controllers/products/informations.tpl
View File

@@ -43,7 +43,7 @@
$('document').ready( function() {
$(".check_product_name")
.autocomplete(
'{$link->getAdminLink('AdminProducts', true)|escape:'html'}', {
'{$link->getAdminLink('AdminProducts', true)|addslashes}', {
minChars: 3,
max: 10,
width: $(".check_product_name").width(),

2
modules/favoriteproducts/views/templates/front/favoriteproducts-account.tpl
View File

@@ -32,7 +32,7 @@ $('document').ready(function()
var parent = $(this).parent().parent();
$.ajax({
url: "{$link->getModuleLink('favoriteproducts', 'actions', ['process' => 'remove'], true)|escape:'html'}",
url: "{$link->getModuleLink('favoriteproducts', 'actions', ['process' => 'remove'], true)|addslashes}",
type: "POST",
data: {
'id_product': idFavoriteProduct,

2
modules/mailalerts/views/templates/front/mailalerts-account.tpl
View File

@@ -35,7 +35,7 @@ $('document').ready(function()
var parent = $(this).parent().parent();
$.ajax({
url: "{$link->getModuleLink('mailalerts', 'actions', ['process' => 'remove'])|escape:'html'}",
url: "{$link->getModuleLink('mailalerts', 'actions', ['process' => 'remove'])|addslashes}",
type: "POST",
data: {
'id_product': id_product_mail_alert,

6
themes/default/mobile/order-address.tpl
View File

@@ -16,8 +16,8 @@
var txtProducts = "{l s='products' js=1}";
{/if}
var addressMultishippingUrl = "{$link->getPageLink('address', true, NULL, "back={$back_order_page}?step=1{'&multi-shipping=1'|urlencode}{if $back}&mod={$back|urlencode}{/if}")|escape:'html'}";
var addressUrl = "{$link->getPageLink('address', true, NULL, "back={$back_order_page}?step=1{if $back}&mod={$back}{/if}")|escape:'html'}";
var addressMultishippingUrl = "{$link->getPageLink('address', true, NULL, "back={$back_order_page}?step=1{'&multi-shipping=1'|urlencode}{if $back}&mod={$back|urlencode}{/if}")|addslashes'}";
var addressUrl = "{$link->getPageLink('address', true, NULL, "back={$back_order_page}?step=1{if $back}&mod={$back}{/if}")|addslashes'}";
var formatedAddressFieldsValuesList = new Array();
@@ -59,7 +59,7 @@
dest_comp.html('');
li_content['title'] = adr_titles_vals[address_type];
li_content['update'] = '<a href="{$link->getPageLink('address', true, NULL, "id_address")|escape:'html'}'+id_address+'&amp;back={$back_order_page}?step=1{if $back}&mod={$back}{/if}" title="{l s='Update' js=1}" style="font-size:.9em;font-weight:normal;padding:8px 0;display:block;text-align:right">&raquo; {l s='Update' js=1}</a>';
li_content['update'] = '<a href="{$link->getPageLink('address', true, NULL, "id_address")|addslashes}'+id_address+'&amp;back={$back_order_page}?step=1{if $back}&mod={$back}{/if}" title="{l s='Update' js=1}" style="font-size:.9em;font-weight:normal;padding:8px 0;display:block;text-align:right">&raquo; {l s='Update' js=1}</a>';
appendAddressList(dest_comp, li_content, ordered_fields_name);
}

2
themes/default/mobile/order-carrier.tpl
View File

@@ -14,7 +14,7 @@
var currencyBlank = '{$currencyBlank|intval}';
var txtProduct = "{l s='product' js=1}";
var txtProducts = "{l s='products' js=1}";
var orderUrl = '{$link->getPageLink("order", true)|escape:'html'}';
var orderUrl = '{$link->getPageLink("order", true)|addslashes}';
var msg = "{l s='You must agree to the terms of service before continuing.' js=1}";
{literal}

10
themes/default/mobile/order-opc.tpl
View File

@@ -33,11 +33,11 @@
<script type="text/javascript">
// <![CDATA[
var imgDir = '{$img_dir}';
var authenticationUrl = '{$link->getPageLink("authentication", true)|escape:'html'}';
var orderOpcUrl = '{$link->getPageLink("order-opc", true)|escape:'html'}';
var historyUrl = '{$link->getPageLink("history", true)|escape:'html'}';
var guestTrackingUrl = '{$link->getPageLink("guest-tracking", true)|escape:'html'}';
var addressUrl = '{$link->getPageLink("address", true)|escape:'html'}';
var authenticationUrl = '{$link->getPageLink("authentication", true)|addslashes}';
var orderOpcUrl = '{$link->getPageLink("order-opc", true)|addslashes}';
var historyUrl = '{$link->getPageLink("history", true)|addslashes}';
var guestTrackingUrl = '{$link->getPageLink("guest-tracking", true)|addslashes}';
var addressUrl = '{$link->getPageLink("address", true)|addslashes}';
var orderProcess = 'order-opc';
var guestCheckoutEnabled = {$PS_GUEST_CHECKOUT_ENABLED|intval};
var currencySign = '{$currencySign|html_entity_decode:2:"UTF-8"}';

2
themes/default/order-address-multishipping.tpl
View File

@@ -112,7 +112,7 @@
dest_comp.html('');
li_content['title'] = adr_titles_vals[address_type];
li_content['update'] = '<a href="{$link->getPageLink('address', true, NULL, "id_address")|escape:'html'}'+id_address+'&amp;back=order?step=1{if $back}&mod={$back}{/if}" title="{l s='Update' js=1}">{l s='Update' js=1}</a>';
li_content['update'] = '<a href="{$link->getPageLink('address', true, NULL, "id_address")|addslashes}'+id_address+'&amp;back=order?step=1{if $back}&mod={$back}{/if}" title="{l s='Update' js=1}">{l s='Update' js=1}</a>';
appendAddressList(dest_comp, li_content, ordered_fields_name);
}

6
themes/default/order-address.tpl
View File

@@ -75,8 +75,8 @@
var txtProducts = "{l s='products' js=1}";
{/if}
var addressMultishippingUrl = "{$link->getPageLink('address', true, NULL, "back={$back_order_page}?step=1{'&multi-shipping=1'|urlencode}{if $back}&mod={$back|urlencode}{/if}")|escape:'html'}";
var addressUrl = "{$link->getPageLink('address', true, NULL, "back={$back_order_page}?step=1{if $back}&mod={$back}{/if}")|escape:'html'}";
var addressMultishippingUrl = "{$link->getPageLink('address', true, NULL, "back={$back_order_page}?step=1{'&multi-shipping=1'|urlencode}{if $back}&mod={$back|urlencode}{/if}")|addslashes}";
var addressUrl = "{$link->getPageLink('address', true, NULL, "back={$back_order_page}?step=1{if $back}&mod={$back}{/if}")|addslashes}";
var formatedAddressFieldsValuesList = new Array();
@@ -116,7 +116,7 @@
dest_comp.html('');
li_content['title'] = adr_titles_vals[address_type];
li_content['update'] = '<a href="{$link->getPageLink('address', true, NULL, "id_address")|escape:'html'}'+id_address+'&amp;back={$back_order_page}?step=1{if $back}&mod={$back}{/if}" title="{l s='Update' js=1}">&raquo; {l s='Update' js=1}</a>';
li_content['update'] = '<a href="{$link->getPageLink('address', true, NULL, "id_address")|addslashes}'+id_address+'&amp;back={$back_order_page}?step=1{if $back}&mod={$back}{/if}" title="{l s='Update' js=1}">&raquo; {l s='Update' js=1}</a>';
appendAddressList(dest_comp, li_content, ordered_fields_name);
}

2
themes/default/order-carrier.tpl
View File

@@ -32,7 +32,7 @@
var currencyBlank = '{$currencyBlank|intval}';
var txtProduct = "{l s='Product' js=1}";
var txtProducts = "{l s='Products' js=1}";
var orderUrl = '{$link->getPageLink("order", true)|escape:'html'}';
var orderUrl = '{$link->getPageLink("order", true)|addslashes}';
var msg = "{l s='You must agree to the terms of service before continuing.' js=1}";
{literal}

10
themes/default/order-opc.tpl
View File

@@ -38,11 +38,11 @@
<script type="text/javascript">
// <![CDATA[
var imgDir = '{$img_dir}';
var authenticationUrl = '{$link->getPageLink("authentication", true)|escape:'html'}';
var orderOpcUrl = '{$link->getPageLink("order-opc", true)|escape:'html'}';
var historyUrl = '{$link->getPageLink("history", true)|escape:'html'}';
var guestTrackingUrl = '{$link->getPageLink("guest-tracking", true)|escape:'html'}';
var addressUrl = '{$link->getPageLink("address", true, NULL, "back={$back_order_page}")|escape:'html'}';
var authenticationUrl = '{$link->getPageLink("authentication", true)|addslashes}';
var orderOpcUrl = '{$link->getPageLink("order-opc", true)|addslashes}';
var historyUrl = '{$link->getPageLink("history", true)|addslashes}';
var guestTrackingUrl = '{$link->getPageLink("guest-tracking", true)|addslashes}';
var addressUrl = '{$link->getPageLink("address", true, NULL, "back={$back_order_page}")|addslashes}';
var orderProcess = 'order-opc';
var guestCheckoutEnabled = {$PS_GUEST_CHECKOUT_ENABLED|intval};
var currencySign = '{$currencySign|html_entity_decode:2:"UTF-8"}';