a5e08f7bcc
I installed the rails_xss plugin, for the main purpose of seeing what will break with Rails 3.0 (where the behaviour of the plugin is the default). I think I've fixed everything, but let me know if you see stuff that is HTML-escaped, which shouldn't be. As a side benefit, we now use Erubis, rather than ERB, to render templates. They tell me it's faster ...
18 lines
634 B
Text
18 lines
634 B
Text
<%-
|
|
@title = "Delete #{@file_name}".html_safe
|
|
@hide_navigation = true
|
|
-%>
|
|
|
|
<%= error_messages_for 'delete' %>
|
|
|
|
<% form_tag({ :controller => 'file', :web => @web_name, :action => 'delete' },
|
|
{'accept-charset' => 'utf-8' }) do %>
|
|
<div class="inputFieldWithPrompt">
|
|
<%= hidden_field 'file', 'file_name' %>
|
|
<label for="system_password">Enter system password</label>
|
|
<input type="password" class="disableAutoComplete" id="system_password"
|
|
name="system_password" />
|
|
<input type="submit" value="Delete" /><br/>
|
|
or go <%= link_to "back", :back %> to the page you came from.
|
|
</div>
|
|
<%- end -%>
|