X-Git-Url: https://git.openstreetmap.org./rails.git/blobdiff_plain/9554ef289e3598a7be86b199f132e5c6a5cd20a5..4168e0963ee19e05c07b40d30e868fd652fd3757:/app/views/trace/view.rhtml diff --git a/app/views/trace/view.rhtml b/app/views/trace/view.rhtml index f351a1dea..d4bdb9745 100644 --- a/app/views/trace/view.rhtml +++ b/app/views/trace/view.rhtml @@ -1,4 +1,4 @@ -

<%= @title %>

+

<%= h(@title) %>

@@ -17,16 +17,16 @@ <%= @trace.size.to_s.gsub(/(\d)(?=(\d{3})+$)/,'\1,') %> Start coordinate: -
<%= @trace.latitude %>; <%= @trace.longitude %>
(<%=link_to 'map', :controller => 'site', :action => 'index', :lat => @trace.latitude, :lon => @trace.longitude, :zoom => 14 %> / <%=link_to 'edit', :controller => 'site', :action => 'edit', :lat => @trace.latitude, :lon => @trace.longitude, :zoom => 14 %>) +
<%= @trace.latitude %>; <%= @trace.longitude %>
(<%=link_to 'map', :controller => 'site', :action => 'index', :lat => @trace.latitude, :lon => @trace.longitude, :zoom => 14 %> / <%=link_to 'edit', :controller => 'site', :action => 'edit', :lat => @trace.latitude, :lon => @trace.longitude, :gpx=> @trace.id, :zoom => 14 %>) <% end %> Owner: - <%= link_to @trace.user.display_name, {:controller => 'user', :action => 'view', :display_name => @trace.user.display_name} %> + <%= link_to h(@trace.user.display_name), {:controller => 'user', :action => 'view', :display_name => @trace.user.display_name} %> Description: - <%= @trace.description %> + <%= h(@trace.description) %> Tags: @@ -50,6 +50,9 @@ <%= button_to 'Make this track public permanently', :controller => 'trace', :action => 'make_public', :id => @trace.id %> <% end %> <% if @trace.user.id == @user.id %> + <%= button_to 'Edit this track', :controller => 'trace', :action => 'edit', :id => @trace.id %> + <% end %> + <% if @trace.user.id == @user.id %> <%= button_to 'Delete this track', :controller => 'trace', :action => 'delete', :id => @trace.id %> <% end %>