Hopiu/django-imagekit
1
0
Fork 0
mirror of https://github.com/Hopiu/django-imagekit.git synced 2026-04-17 03:31:08 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Escaped urls in admin_thumbnail

Browse source
This commit is contained in:
Justin Driscoll 2009-08-31 17:00:38 -04:00
parent 48a2035665
commit 77e953edcb
1 changed files with 3 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
imagekit/models.py
View file

@ -4,6 +4,7 @@ from django.conf import settings
from django.core.files.base import ContentFile
from django.db import models
from django.db.models.base import ModelBase
from django.utils.html import conditional_escape as escape
from django.utils.translation import ugettext_lazy as _
from imagekit import specs
@ -82,10 +83,10 @@ class ImageModel(models.Model):
else:
if hasattr(self, 'get_absolute_url'):
return u'<a href="%s"><img src="%s"></a>' % \
(self.get_absolute_url(), prop.url)
(escape(self.get_absolute_url()), escape(prop.url))
else:
return u'<a href="%s"><img src="%s"></a>' % \
(self._imgfield.url, prop.url)
(escape(self._imgfield.url), escape(prop.url))
admin_thumbnail_view.short_description = _('Thumbnail')
admin_thumbnail_view.allow_tags = True