X-Git-Url: https://git.openstreetmap.org./rails.git/blobdiff_plain/2c0cd2730c369410a677bcd30e6233534e7fc5ad..960d13488a875245570ee498ee9a1ed7cac37bbe:/app/views/message/_message_summary.rhtml
diff --git a/app/views/message/_message_summary.rhtml b/app/views/message/_message_summary.rhtml
index 02972728e..6d45d33dd 100644
--- a/app/views/message/_message_summary.rhtml
+++ b/app/views/message/_message_summary.rhtml
@@ -1,13 +1,13 @@
<% this_colour = cycle('lightgrey', 'white') # can only call once for some dumb reason %>
">
- <%= link_to message_summary.sender.display_name , :controller => 'user', :action => message_summary.sender.display_name %> |
- <%= link_to message_summary.title , :controller => 'message', :action => 'read', :message_id => message_summary.id %> |
+ <%= link_to h(message_summary.sender.display_name), :controller => 'user', :action => message_summary.sender.display_name %> |
+ <%= link_to h(message_summary.title), :controller => 'message', :action => 'read', :message_id => message_summary.id %> |
<%= message_summary.sent_on %> |
<% if message_summary.message_read? %>
<%= button_to 'Mark as unread', :controller => 'message', :action => 'mark', :message_id => message_summary.id, :mark => 'unread' %> |
<% else %>
<%= button_to 'Mark as read', :controller => 'message', :action => 'mark', :message_id => message_summary.id, :mark => 'read' %> |
<% end %>
- <%= button_to 'Reply', :controller => 'message', :action => 'new', :user_id => message_summary.from_user_id %> |
+ <%= button_to 'Reply', :controller => 'message', :action => 'reply', :message_id => message_summary.id %> |