git.koha-community.org Git - koha.git/commit

Bug 35072: Fix invalid usage of "&" in JavaScript intranet-tmpl script redirects

These escapes were invalid in these places, as HTML entity escapes
are meant to be used only inside of HTML elements/attributes, not
inside of JavaScript code.

These URLs would be sent out by the browser as-is, and that'd usually
work on the default install only coincidentally. Unfortunately, on some
setups (such as when using reverse proxies), this would break, and the
URL after "&" would have been truncated.

This small patch adjusts the URLs in templates to not use wrong escapes,
and makes them consistent with how URLs are formatted for JavaScript
redirects in most of the templates already.

Signed-off-by: Owen Leonard <oleonard@myacpl.org>
Signed-off-by: Katrin Fischer <katrin.fischer.83@web.de>
Signed-off-by: Tomas Cohen Arazi <tomascohen@theke.io>
(cherry picked from commit da9f74e56aa3fcaab2a53f0211113d7600263806)
Signed-off-by: Fridolin Somers <fridolin.somers@biblibre.com>
(cherry picked from commit 37eb3092c19361c88ab0442219cd523832b24d2f)
Signed-off-by: Matt Blenkinsop <matt.blenkinsop@ptfs-europe.com>

author	Michał Kula <148193449+mkibp@users.noreply.github.com>
	Mon, 23 Oct 2023 13:51:40 +0000 (15:51 +0200)
committer	Matt Blenkinsop <matt.blenkinsop@ptfs-europe.com>
	Mon, 13 Nov 2023 15:10:47 +0000 (15:10 +0000)
commit	5cbaec63a382727970c41f6c7449ab1f97087eac
tree	5721ea087668fc36475793b026f4e09df51de849	tree \| snapshot
parent	03e6c97e7d95d6a098a988ddaaea542efb648412	commit \| diff

koha-tmpl/intranet-tmpl/prog/js/cart.js		diff \| blob \| history
koha-tmpl/intranet-tmpl/prog/js/catalog.js		diff \| blob \| history
koha-tmpl/intranet-tmpl/prog/js/holds.js		diff \| blob \| history
koha-tmpl/intranet-tmpl/prog/js/members-menu.js		diff \| blob \| history
koha-tmpl/intranet-tmpl/prog/js/pages/results.js		diff \| blob \| history