mirror of
https://github.com/LemmyNet/lemmy.git
synced 2024-09-25 13:00:08 +00:00
Fix compilation error
This commit is contained in:
parent
645bf21d54
commit
1c189798cb
2 changed files with 18 additions and 1 deletions
|
@ -723,6 +723,23 @@ pub fn generate_moderators_url(community_id: &DbUrl) -> Result<DbUrl, LemmyError
|
||||||
Ok(Url::parse(&format!("{community_id}/moderators"))?.into())
|
Ok(Url::parse(&format!("{community_id}/moderators"))?.into())
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/// Replace special HTML characters in API parameters to prevent XSS attacks.
|
||||||
|
///
|
||||||
|
/// Taken from https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.md#output-encoding-for-html-contexts
|
||||||
|
///
|
||||||
|
/// `>` is left in place because it is interpreted as markdown quote.
|
||||||
|
pub fn sanitize_html_api(data: &str) -> String {
|
||||||
|
data
|
||||||
|
.replace('&', "&")
|
||||||
|
.replace('<', "<")
|
||||||
|
.replace('\"', """)
|
||||||
|
.replace('\'', "'")
|
||||||
|
}
|
||||||
|
|
||||||
|
pub fn sanitize_html_api_opt(data: &Option<String>) -> Option<String> {
|
||||||
|
data.as_ref().map(|d| sanitize_html_api(d))
|
||||||
|
}
|
||||||
|
|
||||||
pub fn create_login_cookie(jwt: Sensitive<String>) -> Cookie<'static> {
|
pub fn create_login_cookie(jwt: Sensitive<String>) -> Cookie<'static> {
|
||||||
let mut cookie = Cookie::new(AUTH_COOKIE_NAME, jwt.into_inner());
|
let mut cookie = Cookie::new(AUTH_COOKIE_NAME, jwt.into_inner());
|
||||||
cookie.set_secure(true);
|
cookie.set_secure(true);
|
||||||
|
|
|
@ -1 +1 @@
|
||||||
Subproject commit e943f97fe481dc425acdebc8872bf1fdcabaf875
|
Subproject commit d0f3548379e446d2c333e582734bc68f8d684f4d
|
Loading…
Reference in a new issue