mirror of
https://github.com/mozilla/gecko-dev.git
synced 2024-10-14 22:05:44 +00:00
Bug 236650: html_quote and validate email addresses in editueser.cgi
patch by vlad r=joel,justdave a=justdave
This commit is contained in:
parent
74f086a329
commit
4a6e40541c
@ -357,7 +357,7 @@ if ($action eq 'list') {
|
||||
}
|
||||
$realname = ($realname ? html_quote($realname) : "<FONT COLOR=\"red\">missing</FONT>");
|
||||
print "<TR>\n";
|
||||
print " <TD VALIGN=\"top\"><A HREF=\"editusers.cgi?action=edit&user=", url_quote($user), "\"><B>$s$user$e</B></A></TD>\n";
|
||||
print " <TD VALIGN=\"top\"><A HREF=\"editusers.cgi?action=edit&user=", url_quote($user), "\"><B>$s", html_quote($user), "$e</B></A></TD>\n";
|
||||
print " <TD VALIGN=\"top\">$s$realname$e</TD>\n";
|
||||
if ($candelete) {
|
||||
print " <TD VALIGN=\"top\"><A HREF=\"editusers.cgi?action=del&user=", url_quote($user), "\">Delete</A></TD>\n";
|
||||
@ -749,6 +749,14 @@ if ($action eq 'update') {
|
||||
WHERE login_name=" . SqlQuote($userold));
|
||||
my ($thisuserid) = FetchSQLData();
|
||||
|
||||
my $emailregexp = Param("emailregexp");
|
||||
unless ($user =~ m/$emailregexp/) {
|
||||
print "The user name entered must be a valid e-mail address. Please press\n";
|
||||
print "<b>Back</b> and try again.\n";
|
||||
PutTrailer($localtrailer);
|
||||
exit;
|
||||
}
|
||||
|
||||
my @grpadd = ();
|
||||
my @grpdel = ();
|
||||
my $chggrp = 0;
|
||||
|
Loading…
Reference in New Issue
Block a user