From: Leandro Lucarella <luca@llucax.com.ar>
Date: Wed, 13 Aug 2008 21:15:38 +0000 (-0300)
Subject: Store the sanitized form data when commenting online
X-Git-Url: https://git.llucax.com/software/blitiri.git/commitdiff_plain/464df08f44fddca976f584e5daaf538adc4f443d

Store the sanitized form data when commenting online

When storing a comment, we should use the validated data instead of
the raw one.
---

diff --git a/blitiri.cgi b/blitiri.cgi
index 1ae70ff..e69789f 100755
--- a/blitiri.cgi
+++ b/blitiri.cgi
@@ -1139,7 +1139,8 @@ def handle_cgi():
 						% (line, desc)
 				valid = False
 		if valid:
-			c = article.add_comment(author, body, link)
+			c = article.add_comment(form_data.author,
+					form_data.body, form_data.link)
 			c.save()
 			cdb = CommentDB(article)
 			cdb.comments = article.comments