forked from GNUsocial/gnu-social
[Posting] Don't sanitize on storage
We prefer to have the original input in database and sanitize on output when appropriate
This commit is contained in:
parent
8f43c8b405
commit
ab060332f0
@ -104,7 +104,6 @@ END;
|
|||||||
*/
|
*/
|
||||||
public static function storeNote(int $actor_id, ?string $content, array $attachments, bool $is_local, ?int $reply_to = null, ?int $repeat_of = null)
|
public static function storeNote(int $actor_id, ?string $content, array $attachments, bool $is_local, ?int $reply_to = null, ?int $repeat_of = null)
|
||||||
{
|
{
|
||||||
$content = Security::sanitize($content);
|
|
||||||
$note = Note::create([
|
$note = Note::create([
|
||||||
'gsactor_id' => $actor_id,
|
'gsactor_id' => $actor_id,
|
||||||
'content' => $content,
|
'content' => $content,
|
||||||
|
Loading…
Reference in New Issue
Block a user