add error for username/email containing html. Removed checks for SMILES/SMARTS. Updated html to use the nh_safe template tag. #72

2025-10-22 10:47:35 +13:00
parent 61346c4097
commit ec0fc8cdc1
44 changed files with 168 additions and 125 deletions
--- a/templates/objects/node.html
+++ b/templates/objects/node.html
@ -1,4 +1,5 @@
 {% extends "framework.html" %}
+{% load envipytags %}

 {% block content %}

@ -12,7 +13,7 @@
    <div class="panel-group" id="node-detail">
        <div class="panel panel-default">
            <div class="panel-heading" id="headingPanel" style="font-size:2rem;height: 46px">
-                {{ node.name }}
+                {{ node.name|nh_safe }}
                <div id="actionsButton"
                     style="float: right;font-weight: normal;font-size: medium;position: relative; top: 50%; transform: translateY(-50%);z-index:100;display: none;"
                     class="dropdown"><a href="#" class="dropdown-toggle" data-toggle="dropdown" role="button"
@ -39,7 +40,7 @@
            </div>
            <div id="node-desc" class="panel-collapse collapse in">
                <div class="panel-body list-group-item">
-                    {{ node.description }}
+                    {{ node.description|nh_safe }}
                </div>
            </div>

@ -98,7 +99,7 @@
                <div id="node-scenario" class="panel-collapse collapse in">
                    <div class="panel-body list-group-item">
                        {% for s in node.scenarios.all %}
-                            <a class="list-group-item" href="{{ s.url }}">{{ s.name }} <i>({{ s.package.name }})</i></a>
+                            <a class="list-group-item" href="{{ s.url }}">{{ s.name|nh_safe }} <i>({{ s.package.name|nh_safe }})</i></a>
                        {% endfor %}
                    </div>
                </div>