From 7ddb0e584f0faaa88e29934f88eab119e9325ae5 2011-08-02 12:58:24
From: Toshi MARUYAMA <marutosijp2@yahoo.co.jp>
Date: 2011-08-02 12:58:24
Subject: [PATCH] HTML escape at app/views/auth_sources/edit.rhtml.

git-svn-id: svn+ssh://rubyforge.org/var/svn/redmine/trunk@6363 e93f8b46-1217-0410-a6f0-8f06a7374b81

---

diff --git a/app/views/auth_sources/edit.rhtml b/app/views/auth_sources/edit.rhtml
index 165fd4f..e2c99aa 100644
--- a/app/views/auth_sources/edit.rhtml
+++ b/app/views/auth_sources/edit.rhtml
@@ -1,4 +1,4 @@
-<h2><%=l(:label_auth_source)%> (<%= @auth_source.auth_method_name %>)</h2>
+<h2><%=l(:label_auth_source)%> (<%= h(@auth_source.auth_method_name) %>)</h2>
 
 <% form_tag({:action => 'update', :id => @auth_source}, :class => "tabular") do %>
   <%= render :partial => 'form' %>