X-Git-Url: https://git.openstreetmap.org./rails.git/blobdiff_plain/11bd2a4ddcaf3956f4cdea97d2c4b9c4c78ff318..9b04cebf3cb9190cb46996b100a4dc3659638210:/app/views/trace/view.rhtml
diff --git a/app/views/trace/view.rhtml b/app/views/trace/view.rhtml
index 1ad563729..d4bdb9745 100644
--- a/app/views/trace/view.rhtml
+++ b/app/views/trace/view.rhtml
@@ -1,4 +1,4 @@
-<%= @title %>
+<%= h(@title) %>
@@ -17,16 +17,16 @@
<%= @trace.size.to_s.gsub(/(\d)(?=(\d{3})+$)/,'\1,') %> |
| Start coordinate: |
- <%= @trace.latitude %>, <%= @trace.longitude %> (<%=link_to 'map', :controller => 'site', :action => 'index', :lat => @trace.latitude, :lon => @trace.longitude, :zoom => 14 %> / <%=link_to 'edit', :controller => 'site', :action => 'edit', :lat => @trace.latitude, :lon => @trace.longitude, :zoom => 14 %>) |
+ <%= @trace.latitude %>; <%= @trace.longitude %> (<%=link_to 'map', :controller => 'site', :action => 'index', :lat => @trace.latitude, :lon => @trace.longitude, :zoom => 14 %> / <%=link_to 'edit', :controller => 'site', :action => 'edit', :lat => @trace.latitude, :lon => @trace.longitude, :gpx=> @trace.id, :zoom => 14 %>) |
<% end %>
| Owner: |
- <%= link_to @trace.user.display_name, {:controller => 'user', :action => 'view', :display_name => @trace.user.display_name} %> |
+ <%= link_to h(@trace.user.display_name), {:controller => 'user', :action => 'view', :display_name => @trace.user.display_name} %> |
| Description: |
- <%= @trace.description %> |
+ <%= h(@trace.description) %> |
| Tags: |
@@ -50,6 +50,9 @@
<%= button_to 'Make this track public permanently', :controller => 'trace', :action => 'make_public', :id => @trace.id %> |
<% end %>
<% if @trace.user.id == @user.id %>
+ <%= button_to 'Edit this track', :controller => 'trace', :action => 'edit', :id => @trace.id %> |
+ <% end %>
+ <% if @trace.user.id == @user.id %>
<%= button_to 'Delete this track', :controller => 'trace', :action => 'delete', :id => @trace.id %> |
<% end %>