[Ils-source] r1570 - in branches/1.6: src/com/resolutions/ils/data webapp/WEB-INF/lib

[scribe at crosswire.org]

Author: scribe
Date: 2018-04-05 14:51:45 -0700 (Thu, 05 Apr 2018)
New Revision: 1570

Modified:
   branches/1.6/src/com/resolutions/ils/data/UserProfile.java
   branches/1.6/webapp/WEB-INF/lib/ils.jar
Log:
added symbol whitelist to sanitation to include '@'


Modified: branches/1.6/src/com/resolutions/ils/data/UserProfile.java
===================================================================
--- branches/1.6/src/com/resolutions/ils/data/UserProfile.java	2018-04-04 06:28:58 UTC (rev 1569)
+++ branches/1.6/src/com/resolutions/ils/data/UserProfile.java	2018-04-05 21:51:45 UTC (rev 1570)
@@ -126,7 +126,13 @@
 		.toFactory();
 
 	public static String sanitize(String val) {
-		return sanitizer.sanitize(val);
+
+		val = sanitizer.sanitize(val);
+
+		// whitelist 
+		val = val.replaceAll("@", "@");
+
+		return val;
 	}
 
 	// perform sanitation

Modified: branches/1.6/webapp/WEB-INF/lib/ils.jar
===================================================================
(Binary files differ)