diff options
| author | Michael Koziarski <michael@koziarski.com> | 2009-10-08 14:34:15 +1300 |
|---|---|---|
| committer | Michael Koziarski <michael@koziarski.com> | 2009-10-08 14:34:15 +1300 |
| commit | 28bd0873ff7aae8e5949dc77f1f8b78109cd38f1 (patch) | |
| tree | 2f9ee9d091c2ac317703c24089f80e17a5d6babb | |
| parent | 0c27d0886e880f90240ad2004f1600c1b1c4bfed (diff) | |
| download | rails-28bd0873ff7aae8e5949dc77f1f8b78109cd38f1.tar.gz rails-28bd0873ff7aae8e5949dc77f1f8b78109cd38f1.tar.bz2 rails-28bd0873ff7aae8e5949dc77f1f8b78109cd38f1.zip | |
Don't need h in there now that XSS protection is on by default
| -rw-r--r-- | railties/lib/rails/generators/erb/scaffold/templates/index.html.erb | 2 | ||||
| -rw-r--r-- | railties/lib/rails/generators/erb/scaffold/templates/show.html.erb | 2 |
2 files changed, 2 insertions, 2 deletions
diff --git a/railties/lib/rails/generators/erb/scaffold/templates/index.html.erb b/railties/lib/rails/generators/erb/scaffold/templates/index.html.erb index 5e6a4af9e0..b5c7fd1e58 100644 --- a/railties/lib/rails/generators/erb/scaffold/templates/index.html.erb +++ b/railties/lib/rails/generators/erb/scaffold/templates/index.html.erb @@ -13,7 +13,7 @@ <%% @<%= plural_name %>.each do |<%= singular_name %>| %> <tr> <% for attribute in attributes -%> - <td><%%=h <%= singular_name %>.<%= attribute.name %> %></td> + <td><%%= <%= singular_name %>.<%= attribute.name %> %></td> <% end -%> <td><%%= link_to 'Show', <%= singular_name %> %></td> <td><%%= link_to 'Edit', edit_<%= singular_name %>_path(<%= singular_name %>) %></td> diff --git a/railties/lib/rails/generators/erb/scaffold/templates/show.html.erb b/railties/lib/rails/generators/erb/scaffold/templates/show.html.erb index 25567957be..24f13fc0f8 100644 --- a/railties/lib/rails/generators/erb/scaffold/templates/show.html.erb +++ b/railties/lib/rails/generators/erb/scaffold/templates/show.html.erb @@ -1,7 +1,7 @@ <% for attribute in attributes -%> <p> <b><%= attribute.human_name %>:</b> - <%%=h @<%= singular_name %>.<%= attribute.name %> %> + <%%= @<%= singular_name %>.<%= attribute.name %> %> </p> <% end -%> |