Mercurial > hg

comparison mercurial/templates/monoblue/help.tmpl @ 18526:9409aeaafdc1 stable

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
hgweb: urlescape all urls, HTML escape repo/tag/branch/... names Without this, repository paths or names containing e.g. & characters or html tags yielded strange results, possibly allowing cross-site scripting attacks.
author Thomas Arendsen Hein <thomas@intevation.de>
date Fri, 01 Feb 2013 20:43:35 +0100
parents bebb05a7e249
children f5db3092790f
comparison
equal deleted inserted replaced
18525:462579cbad45 18526:9409aeaafdc1
1 {header} 1 {header}
2 <title>{repo|escape}: Branches</title> 2 <title>{repo|escape}: Branches</title>
3 <link rel="alternate" type="application/atom+xml" href="{url}atom-log" title="Atom feed for {repo|escape}"/> 3 <link rel="alternate" type="application/atom+xml" href="{url|urlescape}atom-log" title="Atom feed for {repo|escape}"/>
4 <link rel="alternate" type="application/rss+xml" href="{url}rss-log" title="RSS feed for {repo|escape}"/> 4 <link rel="alternate" type="application/rss+xml" href="{url|urlescape}rss-log" title="RSS feed for {repo|escape}"/>
5 </head> 5 </head>
6 6
7 <body> 7 <body>
8 <div id="container"> 8 <div id="container">
9 <div class="page-header"> 9 <div class="page-header">
10 <h1 class="breadcrumb"><a href="/">Mercurial</a> {pathdef%breadcrumb} / help</h1> 10 <h1 class="breadcrumb"><a href="/">Mercurial</a> {pathdef%breadcrumb} / help</h1>
11 11
12 <form action="{url}log"> 12 <form action="{url|urlescape}log">
13 {sessionvars%hiddenformentry} 13 {sessionvars%hiddenformentry}
14 <dl class="search"> 14 <dl class="search">
15 <dt><label>Search: </label></dt> 15 <dt><label>Search: </label></dt>
16 <dd><input type="text" name="rev" /></dd> 16 <dd><input type="text" name="rev" /></dd>
17 </dl> 17 </dl>
18 </form> 18 </form>
19 19
20 <ul class="page-nav"> 20 <ul class="page-nav">
21 <li><a href="{url}summary{sessionvars%urlparameter}">summary</a></li> 21 <li><a href="{url|urlescape}summary{sessionvars%urlparameter}">summary</a></li>
22 <li><a href="{url}shortlog{sessionvars%urlparameter}">shortlog</a></li> 22 <li><a href="{url|urlescape}shortlog{sessionvars%urlparameter}">shortlog</a></li>
23 <li><a href="{url}changelog{sessionvars%urlparameter}">changelog</a></li> 23 <li><a href="{url|urlescape}changelog{sessionvars%urlparameter}">changelog</a></li>
24 <li><a href="{url}graph/{node|short}{sessionvars%urlparameter}">graph</a></li> 24 <li><a href="{url|urlescape}graph/{node|short}{sessionvars%urlparameter}">graph</a></li>
25 <li><a href="{url}tags{sessionvars%urlparameter}">tags</a></li> 25 <li><a href="{url|urlescape}tags{sessionvars%urlparameter}">tags</a></li>
26 <li><a href="{url}bookmarks{sessionvars%urlparameter}">bookmarks</a></li> 26 <li><a href="{url|urlescape}bookmarks{sessionvars%urlparameter}">bookmarks</a></li>
27 <li><a href="{url}branches{sessionvars%urlparameter}">branches</a></li> 27 <li><a href="{url|urlescape}branches{sessionvars%urlparameter}">branches</a></li>
28 <li><a href="{url}file/{node|short}{sessionvars%urlparameter}">files</a></li> 28 <li><a href="{url|urlescape}file/{node|short}{sessionvars%urlparameter}">files</a></li>
29 <li class="current">help</li> 29 <li class="current">help</li>
30 </ul> 30 </ul>
31 </div> 31 </div>
32 32
33 <h2 class="no-link no-border">branches</h2> 33 <h2 class="no-link no-border">branches</h2>