svn commit: r1726734 - /portals/jetspeed-2/applications/j2-admin/trunk/src/main/webapp/WEB-INF/view/security/usermanager2.jsp

Mon, 25 Jan 2016 21:58:25 -0800 

Author: taylor
Date: Tue Jan 26 05:58:02 2016
New Revision: 1726734

URL: http://svn.apache.org/viewvc?rev=1726734&view=rev
Log:
further tightening security around new user manager service for sql injections.

Modified:
    
portals/jetspeed-2/applications/j2-admin/trunk/src/main/webapp/WEB-INF/view/security/usermanager2.jsp

Modified: 
portals/jetspeed-2/applications/j2-admin/trunk/src/main/webapp/WEB-INF/view/security/usermanager2.jsp
URL: 
http://svn.apache.org/viewvc/portals/jetspeed-2/applications/j2-admin/trunk/src/main/webapp/WEB-INF/view/security/usermanager2.jsp?rev=1726734&r1=1726733&r2=1726734&view=diff
==============================================================================
--- 
portals/jetspeed-2/applications/j2-admin/trunk/src/main/webapp/WEB-INF/view/security/usermanager2.jsp
 (original)
+++ 
portals/jetspeed-2/applications/j2-admin/trunk/src/main/webapp/WEB-INF/view/security/usermanager2.jsp
 Tue Jan 26 05:58:02 2016
@@ -383,9 +383,9 @@ YUI({combine: true, timeout: 10000}).use
         Y.one('#inputUserName').set('value', dataOut.name);
         Y.one('#userDisplayName').setContent(dataOut.name);
         Y.one('#inputUserNameHidden').set('value', dataOut.name);
-        Y.one('#inputUserNameGiven').set('value', 
dataOut.infoMap["user.name.given"]);
-        Y.one('#inputUserNameFamily').set('value', 
dataOut.infoMap["user.name.family"]);
-        Y.one('#inputUserEmail').set('value', 
dataOut.infoMap["user.business-info.online.email"]);
+        Y.one('#inputUserNameGiven').set('value', 
Y.Lang.isUndefined(dataOut.infoMap["user.name.given"]) ? '' : 
dataOut.infoMap["user.name.given"]);
+        Y.one('#inputUserNameFamily').set('value', 
Y.Lang.isUndefined(dataOut.infoMap["user.name.family"]) ? '' : 
dataOut.infoMap["user.name.family"]);
+        Y.one('#inputUserEmail').set('value', 
Y.Lang.isUndefined(dataOut.infoMap["user.business-info.online.email"]) ? '' : 
dataOut.infoMap["user.business-info.online.email"]);
         Y.one('#userEnabled').set('checked', dataOut.enabled);
         Y.one('#credentialUpdateRequired').set('checked', 
dataOut.credentialUpdateRequired);
                Y.one('#editUserPage * #password').set('value', '');



---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to