%#
%# COPYRIGHT:
%#
-%# This software is Copyright (c) 1996-2012 Best Practical Solutions, LLC
+%# This software is Copyright (c) 1996-2015 Best Practical Solutions, LLC
%# <sales@bestpractical.com>
%#
%# (Except where explicitly superseded by other copyright notices)
%#
%# END BPS TAGGED BLOCK }}}
<%INIT>
-use Encode ();
-
-my $old_current_user;
+my $current_user = $session{CurrentUser};
if ( $m->request_comp->path =~ RT->Config->Get('WebNoAuthRegex') ) {
my $path = $m->dhandler_arg;
# Unescape parts
$name =~ s/\%([0-9a-z]{2})/chr(hex($1))/gei;
- # convert to perl strings
- $name = Encode::decode_utf8($name);
+ # Decode from bytes to characters
+ $name = Encode::decode( "UTF-8", $name );
my $user = RT::User->new(RT->SystemUser);
$user->Load($name);
unless $user->ValidateAuthString( $auth,
$ARGS{Query} . $ARGS{Order} . $ARGS{OrderBy} );
- $old_current_user = $session{'CurrentUser'};
- my $cu = RT::CurrentUser->new;
- $cu->Load($user);
- $session{'CurrentUser'} = $cu;
+ $current_user = RT::CurrentUser->new;
+ $current_user->Load($user);
}
-my $Tickets = RT::Tickets->new($session{'CurrentUser'});
+my $Tickets = RT::Tickets->new($current_user);
$Tickets->FromSQL($ARGS{'Query'});
if ($OrderBy =~ /\|/) {
# Multiple Sorts
while ( my $Ticket = $Tickets->Next()) {
my $creator_str = $m->scomp('/Elements/ShowUser', User => $Ticket->CreatorObj);
$creator_str =~ s/[\r\n]//g;
+
+ # Get the plain-text content; it is interpreted as HTML by RSS
+ # readers, so it must be escaped (and is escaped _again_ when
+ # inserted into the XML).
+ my $content = $Ticket->Transactions->First->Content;
+ $content = $m->interp->apply_escapes( $content, 'h');
+
$rss->add_item(
title => $Ticket->Subject || loc('No Subject'),
link => RT->Config->Get('WebURL')."Ticket/Display.html?id=".$Ticket->id,
- description => $Ticket->Transactions->First->Content,
+ description => $content,
dc => { creator => $creator_str,
date => $Ticket->CreatedObj->RFC2822,
},
}
$m->out($rss->as_string);
-$session{'CurrentUser'} = $old_current_user if $old_current_user;
$m->abort();
</%INIT>
<%ARGS>