Details
-
Bug
-
Resolution: Incomplete
-
Minor
-
None
-
Professional Edition
-
None
Description
Revision 6273 added escape_html() to login_message, removing our ability to use HTML in the login warning.
Please revert this change:
@@-83,7 +83,7@@
if (isset($config['login_message']))
{ - echo('<div class=row><div class="col-md-6 col-md-offset-3"><div style="margin-top: 10px;text-align: center; font-weight: bold; color: #cc0000;">'.$config['login_message'].'</div></div></div>'); + echo('<div class=row><div class="col-md-6 col-md-offset-3"><div style="margin-top: 10px;text-align: center; font-weight: bold; color: #cc0000;">'.escape_html($config['login_message']).'</div></div></div>'); } ?>
<script type="text/javascript">
