Commit 38c34c62 authored by Robert Czechowski's avatar Robert Czechowski
Browse files

Profile change status: check query value before giving it on to the template

parent 7a247330
......@@ -485,7 +485,10 @@ pub fn show_profile<T: MedalConnection>(conn: &T, session_token: String, user_id
query_string.map(|query| {
if query.starts_with("status=") {
data.insert((&query[7..]).to_string(), to_json(&true));
let status: &str = &query[7..];
if ["nothing_changed","data_changed","password_changed","password_missmatch"].contains(&status) {
data.insert((status).to_string(), to_json(&true));
}
}});
},
Some(user_id) => {
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment